Every CVE whose affected-product data names Podman Project Podman, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (17)
CVE-2022-1227 — CVSS 8.8 (high): A privilege escalation flaw was found in Podman. This flaw allows an attacker to publish a malicious image to a public registry. Once this…
CVE-2026-33414 — CVSS 7.8 (high): Podman is a tool for managing OCI containers and pods. Versions 4.8.0 through 5.8.1 contain a command injection vulnerability in the HyperV…
CVE-2024-3056 — CVSS 7.7 (high): A flaw was found in Podman. This issue may allow an attacker to create a specially crafted container that, when configured to share the…
CVE-2026-57231 — CVSS 7.5 (high): Podman is a tool for managing OCI containers and pods. From 1.8.1 until 5.8.4, a container image that contains a environment variable with…
CVE-2022-2738 — CVSS 7.5 (high): The version of podman as released for Red Hat Enterprise Linux 7 Extras via RHSA-2022:2190 advisory included an incorrect version of podman…
CVE-2022-27649 — CVSS 7.5 (high): A flaw was found in Podman, where containers were started incorrectly with non-empty default permissions. A vulnerability was found in Moby…
CVE-2022-2989 — CVSS 7.1 (high): An incorrect handling of the supplementary groups in the Podman container engine might lead to the sensitive information disclosure or…
CVE-2021-20188 — CVSS 7.0 (high): A flaw was found in podman before 1.7.0. File permissions for non-root users running in a privileged container are not correctly checked…
CVE-2023-0778 — CVSS 6.8 (medium): A Time-of-check Time-of-use (TOCTOU) flaw was found in podman. This issue may allow a malicious user to replace a normal file in a volume…
CVE-2021-4024 — CVSS 6.5 (medium): A flaw was found in podman. The `podman machine` function (used to create and manage Podman virtual machine containing a Podman process)…
CVE-2019-25067 — CVSS 6.3 (medium): A vulnerability, which was classified as critical, was found in Podman and Varlink 1.5.1. This affects an unknown part of the component…
CVE-2021-20199 — CVSS 5.9 (medium): Rootless containers run with Podman, receive all traffic with a source IP address of 127.0.0.1 (including from remote hosts). This impacts…
CVE-2026-55686 — CVSS 5.3 (medium): Podman is a tool for managing OCI containers and pods. From 3.0.0 until 5.7.1, running a malicious container image where the WORKDIR path…
CVE-2022-2739 — CVSS 5.3 (medium): The version of podman as released for Red Hat Enterprise Linux 7 Extras via RHSA-2022:2190 advisory included an incorrect version of podman…
CVE-2022-4122 — CVSS 5.3 (medium): A vulnerability was found in buildah. Incorrect following of symlinks while reading .containerignore and .dockerignore results in…
CVE-2020-14370 — CVSS 5.3 (medium): An information disclosure vulnerability was found in containers/podman in versions before 2.0.5. When using the deprecated Varlink API or…
CVE-2022-4123 — CVSS 3.3 (low): A flaw was found in Buildah. The local path and the lowest subdirectory may be disclosed due to incorrect absolute path traversal…