vmware/photon

Releases355

Frequency1 week 5 hours

Last Release about 3 years ago

Stars3.18K

Minimal Linux container host

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2022-22942 ↗	Dec 13, 2023Wednesday, 13 December 2023, 09:15	7.8 HIGH	—
The vmwgfx driver contains a local privilege escalation vulnerability that allows unprivileged users to gain access to files opened by other processes on the system through a dangling 'file' pointer.
CVE-2021-22055 ↗	Apr 11, 2022Monday, 11 April 2022, 20:15	5.3 MEDIUM	5 MEDIUM
The SchedulerServer in Vmware photon allows remote attackers to inject logs through \r in the package parameter. Attackers can also insert malicious data and fake entries.