CVE-2022-1227

Published Apr 29, 2022

Last updated 5 months ago

Overview

Description: A privilege escalation flaw was found in Podman. This flaw allows an attacker to publish a malicious image to a public registry. Once this image is downloaded by a potential victim, the vulnerability is triggered after a user runs the 'podman top' command. This action gives the attacker access to the host filesystem, leading to information disclosure or denial of service.
Source: secalert@redhat.com
NVD status: Modified

Risk scores

CVSS 3.1

Type: Primary
Base score: 8.8
Impact score: 5.9
Exploitability score: 2.8
Vector string: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Severity: HIGH

CVSS 2.0

Type: Primary
Base score: 6.8
Impact score: 6.4
Exploitability score: 8.6
Vector string: AV:N/AC:M/Au:N/C:P/I:P/A:P

Weaknesses

nvd@nist.gov: CWE-269
secalert@redhat.com: CWE-281

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:podman_project:podman:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "027F4117-F10C-4D9A-9977-BEB6146AA10A",
            "versionEndExcluding": "4.0.0"
          },
          {
            "criteria": "cpe:2.3:a:psgo_project:psgo:*:*:*:*:*:go:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2C4F3011-92CB-4A09-B338-6ECFA13989E3",
            "versionEndExcluding": "1.7.2"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:redhat:developer_tools:1.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "60937D60-6B78-400F-8D30-7FCF328659A1"
          },
          {
            "criteria": "cpe:2.3:a:redhat:enterprise_linux_server_update_services_for_sap_solutions:8.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D4C9BAAE-9D03-4351-B91A-4F01B5C5B131"
          },
          {
            "criteria": "cpe:2.3:a:redhat:openshift_container_platform:4.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "932D137F-528B-4526-9A89-CD59FA1AB0FE"
          },
          {
            "criteria": "cpe:2.3:a:redhat:quay:3.0.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B1987BDA-0113-4603-B9BE-76647EB043F2"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "142AD0DD-4CF3-4D74-9442-459CE3347E3A"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F4CFF558-3C47-480D-A2F0-BABF26042943"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux_eus:8.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6C3741B8-851F-475D-B428-523F4F722350"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems:7.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "566507B6-AC95-47F7-A3FB-C6F414E45F51"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems:8.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4063768E-67FA-4940-8A0C-101C1EFD0D7E"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian:7.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B4A684C7-88FD-43C4-9BDB-AE337FCBD0AB"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian:8.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B3D5812D-20DB-4605-9BEA-ED20FAAE673A"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "51EF4996-72F4-4FA4-814F-F5991E7A8318"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux_server_aus:8.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "76C24D94-834A-4E9D-8F73-624AFA99AAA2"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux_server_for_power_little_endian_update_services_for_sap_solutions:8.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "871A5C26-DB7B-4870-A5B2-5DD24C90B4A7"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux_server_tus:8.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1272DF03-7674-4BD4-8E64-94004B195448"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "825ECE2D-E232-46E0-A047-074B34DB1E97"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A930E247-0B43-43CB-98FF-6CE7B8189835"
          },
          {
            "criteria": "cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "80E516C0-98A4-4ADE-B69F-66A772E2BAAA"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 3.1

CVSS 2.0

Weaknesses

Social media

Configurations

References