VYPR
High severityNVD Advisory· Published Apr 29, 2022· Updated Aug 2, 2024

CVE-2022-1227

CVE-2022-1227

Description

A privilege escalation flaw was found in Podman. This flaw allows an attacker to publish a malicious image to a public registry. Once this image is downloaded by a potential victim, the vulnerability is triggered after a user runs the 'podman top' command. This action gives the attacker access to the host filesystem, leading to information disclosure or denial of service.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
github.com/containers/podman/v3Go
< 3.43.4
github.com/containers/psgoGo
< 1.7.21.7.2

Affected products

46

Patches

Vulnerability mechanics

References

13

News mentions

0

No linked articles in our index yet.