github.com/containernetworking/plugins (Go) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the Go package github.com/containernetworking/plugins, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (2)
CVE-2025-67499 — CVSS 6.6 (medium): The CNI portmap plugin allows containers to emulate opening a host port, forwarding that traffic to the container. Versions 1.6.0 through…
CVE-2020-10749 — CVSS 6.0 (medium): A vulnerability was found in all versions of containernetworking/plugins before version 0.8.6, that allows malicious containers in…