VYPR
Medium severity6.8NVD Advisory· Published Mar 27, 2023· Updated Jun 17, 2026

CVE-2023-0778

CVE-2023-0778

Description

A Time-of-check Time-of-use (TOCTOU) flaw was found in podman. This issue may allow a malicious user to replace a normal file in a volume with a symlink while exporting the volume, allowing for access to arbitrary files on the host file system.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
github.com/containers/podman/v4Go
< 4.4.24.4.2

Affected products

49

Patches

Vulnerability mechanics

References

8

News mentions

0

No linked articles in our index yet.