Buildah Project - Buildah CVE

Filtered by vendor Buildah Project Subscribe

Filtered by product Buildah

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2020-10696	2 Buildah Project, Redhat	3 Buildah, Enterprise Linux, Openshift Container Platform	2020-04-01	9.3 HIGH	8.8 HIGH
A path traversal flaw was found in Buildah in versions before 1.14.5. This flaw allows an attacker to trick a user into building a malicious container image hosted on an HTTP(s) server and then write files to the user's system anywhere that the user has permissions.

Vulnerabilities (CVE)