| CVE-2026-46680 |
high |
— |
8.0 |
|
|
|
13d ago |
containerd user ID handling bypass allows runAsNonRoot evasion |
| CVE-2020-15257 |
high |
— |
8.0 |
|
|
|
5y ago |
containerd is an industry-standard container runtime and is available as a daemon for Linux and Windows. In containerd before versions 1.3.9 and 1.4.3, the containerd-shim API is improperly exposed t… |
| CVE-2021-21334 |
medium |
— |
5.5 |
|
|
|
2y ago |
containerd environment variable leak |
| CVE-2023-25173 |
medium |
— |
5.5 |
|
|
|
3y ago |
RHSA-2023:6939: container-tools:rhel8 security and bug fix update (Moderate) |
| CVE-2021-41103 |
medium |
— |
5.5 |
|
|
|
5y ago |
Insufficiently restricted permissions on plugin directories in github.com/containerd/containerd |
| CVE-2021-32760 |
medium |
— |
5.5 |
|
|
|
5y ago |
Archive package allows chmod of file outside of unpack target directory in github.com/containerd/containerd |
| CVE-2025-64329 |
unknown |
— |
— |
|
|
|
7mo ago |
containerd CRI server: Host memory exhaustion through Attach goroutine leak in github.com/containerd/containerd |
| CVE-2024-25621 |
unknown |
— |
— |
|
|
|
7mo ago |
containerd affected by a local privilege escalation via wide permissions on CRI directory in github.com/containerd/containerd |
| CVE-2024-40635 |
unknown |
— |
— |
|
|
|
1y ago |
containerd has an integer overflow in User ID handling in github.com/containerd/containerd |
| CVE-2023-25153 |
unknown |
— |
— |
|
|
|
3y ago |
Memory exhaustion via OCI image importer in github.com/containerd/containerd |
| CVE-2022-23471 |
unknown |
— |
— |
|
|
|
4y ago |
containerd CRI stream server vulnerable to host memory exhaustion via terminal in github.com/containerd/containerd |
| CVE-2022-31030 |
unknown |
— |
— |
|
|
|
4y ago |
containerd CRI plugin: Host memory exhaustion through ExecSync in github.com/containerd/containerd |
| CVE-2022-23648 |
unknown |
— |
— |
|
|
|
4y ago |
containerd CRI plugin: Insecure handling of image volumes in github.com/containerd/containerd |
| CVE-2020-15157 |
unknown |
— |
— |
|
|
|
4y ago |
In containerd (an industry-standard container runtime) before version 1.2.14 there is a credential leaking vulnerability. If a container image manifest in the OCI Image format or Docker Image V2 Sche… |
| CVE-2021-43816 |
unknown |
— |
— |
|
|
|
5y ago |
Unprivileged pod using `hostPath` can side-step active LSM when it is SELinux in github.com/containerd/containerd |
