Approved changes feed: RSS · Atom
cpe:2.3:a:openeuler:isulad:*:*:*:*:*:*:*:*
part: a version: * update: *
| Vendor | Openeuler (b9dd928a-bf24-59f3-b24a-02f5732eb8f2) |
|---|---|
| Product | Isulad (739cd32d-88ef-5bed-a394-f3824bf1b28c) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2021-33638 |
vulnerable | 2026-06-03 14:44:43.762769 |
Run copy with container in a malicious directory may cause container escaping
HIGH (8.4)
When the isula cp command is used to copy files from a container to a host machine and the container is controlled by an attacker, the attacker can escape the container.
Published: 2023-10-29T07:59:45.026Z
Updated: 2024-09-09T14:09:44.635Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2021-33637 |
vulnerable | 2026-06-03 14:44:43.762311 |
Export container in a malicious directory may cause process to be hijacked
HIGH (8.4)
When the isula export command is used to export a container to an image and the container is controlled by an attacker, the attacker can escape the container.
Published: 2023-10-29T07:58:55.220Z
Updated: 2024-09-09T14:10:35.837Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2021-33636 |
vulnerable | 2026-06-03 14:44:43.761806 |
Load malicious images may cause process to be hijacked
HIGH (8.4)
When the isula load command is used to load malicious images, attackers can execute arbitrary code.
Published: 2023-10-29T07:58:05.033Z
Updated: 2024-09-09T14:15:38.166Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2021-33635 |
vulnerable | 2026-06-03 14:44:43.758957 |
Pull malicious images may cause process to be hijacked
CRITICAL (9.8)
When malicious images are pulled by isula pull, attackers can execute arbitrary code.
Published: 2023-10-29T07:56:44.304Z
Updated: 2024-09-09T14:20:16.034Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2021-33632 |
vulnerable | 2026-06-03 14:44:43.753041 |
TOCTOU Race Condition problem in iSulad
HIGH (7)
Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in openEuler iSulad on Linux allows Leveraging Time-of-Check and Time-of-Use (TOCTOU) Race Conditions. This vulnerability is associated with program files https://gitee.Com/openeuler/iSulad/blob/master/src/cmd/isulad/main.C.
This issue affects iSulad: 2.0.18-13, from 2.1.4-1 through 2.1.4-2.
Published: 2024-03-25T06:59:42.307Z
Updated: 2024-08-03T23:58:21.422Z Reference links
|
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.