CVE-2021-33637

When the isula export command is used to export a container to an image and the container is controlled by an attacker, the attacker can escape the container.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:openeuler:isula:2.0.8-20210518.144540:*:*:*:*:*:*:*
cpe:2.3:a:openeuler:isula:2.0.18-10:*:*:*:*:*:*:*
cpe:2.3:a:openeuler:isula:2.1.2:*:*:*:*:*:*:*

History

08 Nov 2023, 14:12

Type Values Removed Values Added
CPE cpe:2.3:a:openeuler:isula:2.1.2:*:*:*:*:*:*:*
cpe:2.3:a:openeuler:isula:2.0.18-10:*:*:*:*:*:*:*
cpe:2.3:a:openeuler:isula:2.0.8-20210518.144540:*:*:*:*:*:*:*
References (MISC) https://gitee.com/src-openeuler/iSulad/pulls/627/files - (MISC) https://gitee.com/src-openeuler/iSulad/pulls/627/files - Patch
References (MISC) https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2023-1686 - (MISC) https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2023-1686 - Vendor Advisory
References (MISC) https://gitee.com/src-openeuler/iSulad/pulls/600/files - (MISC) https://gitee.com/src-openeuler/iSulad/pulls/600/files - Patch
CWE NVD-CWE-noinfo
First Time Openeuler isula
Openeuler
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 6.5

29 Oct 2023, 08:15

Type Values Removed Values Added
New CVE

Information

Published : 2023-10-29 08:15

Updated : 2024-02-28 20:33


NVD link : CVE-2021-33637

Mitre link : CVE-2021-33637

CVE.ORG link : CVE-2021-33637


JSON object : View

Products Affected

openeuler

  • isula
CWE
NVD-CWE-noinfo CWE-665

Improper Initialization