GCVE - cpe:2.3:a:openeuler:isula:2.0.8-20210518.144540:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:openeuler:isula:2.0.8-20210518.144540:*:*:*:*:*:*:*

part: a version: 2.0.8-20210518.144540 update: *

Vendor	Openeuler (`b9dd928a-bf24-59f3-b24a-02f5732eb8f2`)
Product	Isula (`eaae059f-7222-5fb4-9a27-706c2b705b3d`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from NVD CPE 2.0 feed

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2021-33638`	vulnerable	2026-06-03 14:44:43.762802	Run copy with container in a malicious directory may cause container escaping HIGH (8.4) When the isula cp command is used to copy files from a container to a host machine and the container is controlled by an attacker, the attacker can escape the container. Published: 2023-10-29T07:59:45.026Z Updated: 2024-09-09T14:09:44.635Z Open on db.gcve.eu Reference links https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2023-1686 https://gitee.com/src-openeuler/iSulad/pulls/627/files https://gitee.com/src-openeuler/iSulad/pulls/600/files	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2021-33637`	vulnerable	2026-06-03 14:44:43.762342	Export container in a malicious directory may cause process to be hijacked HIGH (8.4) When the isula export command is used to export a container to an image and the container is controlled by an attacker, the attacker can escape the container. Published: 2023-10-29T07:58:55.220Z Updated: 2024-09-09T14:10:35.837Z Open on db.gcve.eu Reference links https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2023-1686 https://gitee.com/src-openeuler/iSulad/pulls/627/files https://gitee.com/src-openeuler/iSulad/pulls/600/files	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2021-33636`	vulnerable	2026-06-03 14:44:43.761852	Load malicious images may cause process to be hijacked HIGH (8.4) When the isula load command is used to load malicious images, attackers can execute arbitrary code. Published: 2023-10-29T07:58:05.033Z Updated: 2024-09-09T14:15:38.166Z Open on db.gcve.eu Reference links https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2023-1686 https://gitee.com/src-openeuler/iSulad/pulls/627/files https://gitee.com/src-openeuler/iSulad/pulls/600/files	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2021-33635`	vulnerable	2026-06-03 14:44:43.760093	Pull malicious images may cause process to be hijacked CRITICAL (9.8) When malicious images are pulled by isula pull, attackers can execute arbitrary code. Published: 2023-10-29T07:56:44.304Z Updated: 2024-09-09T14:20:16.034Z Open on db.gcve.eu Reference links https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2023-1686 https://gitee.com/src-openeuler/iSulad/pulls/627/files https://gitee.com/src-openeuler/iSulad/pulls/600/files	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.

OpenEuler Isula 2.0.8-20210518.144540

PURL mappings

Vulnerability references

Contribute