Home
Blog
Arbitrary Host File Access from containers launched by containerd CRI
CVE-2022-23648

Arbitrary Host File Access from containers launched by containerd CRI <br /> CVE-2022-23648

Arbitrary Host File Access from containers launched by containerd CRI
CVE-2022-23648

Feb 27, 2023

Jonathan Kaftzan
VP Marketing & Business Development

Mar 29, 2022 – A vulnerability in containerd, a popular container runtime, allows especially containers to gain read-only access to files from the host machine. While general container isolation is expected to prevent such access, in Kubernetes, it is especially dangerous…

Share

Related Articles

Apr 17, 2024

What it takes to do Cloud Detection & Response

A guest post by James Berthoty the founder of Latio Tech. The shift to cloud...

James Berthoty

Founder, Latio Tech

Apr 8, 2024

Seccomp internals deep dive – Part 1

Seccomp, short for Secure Computing Mode, is a noteworthy tool offered by the Linux kernel....

Amit Schendel

Security Researcher

Apr 3, 2024

Yet another reason why the xz backdoor is a sneaky b@$tard

(We are talking about the xz/libzma backdoor identified with CVE-2024-3094) Background If you just woke...

Ben Hirschberg

CTO & Co-founder