VYPR
High severity7.7NVD Advisory· Published Jun 3, 2019· Updated Jun 17, 2026

CVE-2019-10144

CVE-2019-10144

Description

rkt through version 1.30.0 does not isolate processes in containers that are run with rkt enter. Processes run with rkt enter are given all capabilities during stage 2 (the actual environment in which the applications run). Compromised containers could exploit this flaw to access host resources.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • rkt/rktdescription
  • rkt/rktllm-fuzzy
    Range: <=1.30.0

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.