CVE-2018-10856

Published July 3rd, 2018

View on NVD ↗

CVSS v3

N/A

CVSS v2

6.5

MEDIUM

Affected

PROJECT

Description

It has been discovered that podman before version 0.6.1 does not drop capabilities when executing a container as a non-root user. This results in unnecessary privileges being granted to the container.

podman-container-tools/podman

Podman: A tool for managing OCI containers and pods.

GitHub

31.9K