Katacontainers Runtime — known CVE vulnerabilities
Every CVE whose affected-product data names Katacontainers Runtime, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2020-2025 — CVSS 8.8 (high): Kata Containers before 1.11.0 on Cloud Hypervisor persists guest filesystem changes to the underlying image file on the host. A malicious…
CVE-2020-2026 — CVSS 7.8 (high): A malicious guest compromised before a container creation (e.g. a malicious guest image or a guest running multiple containers) can trick…
CVE-2020-2024 — CVSS 6.5 (medium): An improper link resolution vulnerability affects Kata Containers versions prior to 1.11.0. Upon container teardown, a malicious guest can…
CVE-2020-2023 — CVSS 3.8 (low): Kata Containers doesn't restrict containers from accessing the guest's root filesystem device. Malicious containers can exploit this to…