Kata Containers Vulnerability: Unauthorized Access to Guest's Root Filesystem

Kata Containers Vulnerability: Unauthorized Access to Guest's Root Filesystem

CVE-2020-2023 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:L

Kata Containers doesn't restrict containers from accessing the guest's root filesystem device. Malicious containers can exploit this to gain code execution on the guest and masquerade as the kata-agent. This issue affects Kata Containers 1.11 versions earlier than 1.11.1; Kata Containers 1.10 versions earlier than 1.10.5; and Kata Containers 1.9 and earlier versions.

Learn more about our Web Application Penetration Testing UK.