CVE-2024-3154

Published
View on NVD ↗
CVSS v3
7.2
HIGH
CVSS v2
N/A
Affected
3
PROJECTS

Description

A flaw was found in cri-o, where an arbitrary systemd property can be injected via a Pod annotation. Any user who can create a pod with an arbitrary annotation may perform an arbitrary action on the host system.

opencontainers/runc
opencontainers/runc
CLI tool for spawning and running containers according to the OCI specification
GitHubGitHub
13.2K
cri-o/cri-o
cri-o/cri-o
Open Container Initiative-based implementation of Kubernetes Container Runtime Interface
GitHubGitHub
5.61K
opencontainers/runtime-spec
opencontainers/runtime-spec
OCI Runtime Specification
GitHubGitHub
3.62K