VYPR
High severityNVD Advisory· Published Mar 16, 2022· Updated Aug 2, 2024

CVE-2022-0811

CVE-2022-0811

Description

A flaw was found in CRI-O in the way it set kernel options for a pod. This issue allows anyone with rights to deploy a pod on a Kubernetes cluster that uses the CRI-O runtime to achieve a container escape and arbitrary code execution as root on the cluster node, where the malicious pod was deployed.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
github.com/cri-o/cri-oGo
>= 1.19.0, < 1.19.61.19.6
github.com/cri-o/cri-oGo
>= 1.20.0, < 1.20.71.20.7
github.com/cri-o/cri-oGo
>= 1.21.0, < 1.21.61.21.6
github.com/cri-o/cri-oGo
>= 1.22.0, < 1.22.31.22.3
github.com/cri-o/cri-oGo
>= 1.23.0, < 1.23.21.23.2

Affected products

2

Patches

Vulnerability mechanics

References

7

News mentions

0

No linked articles in our index yet.