VYPR

guest-oslogin

by Google

CVEs (3)

  • CVE-2020-8933Jun 22, 2020
    risk 0.00cvss epss 0.00

    A vulnerability in Google Cloud Platform's guest-oslogin versions between 20190304 and 20200507 allows a user that is only granted the role "roles/compute.osLogin" to escalate privileges to root. Using the membership to the "lxd" group, an attacker can attach host devices and…

  • CVE-2020-8903Jun 22, 2020
    risk 0.00cvss epss 0.00

    A vulnerability in Google Cloud Platform's guest-oslogin versions between 20190304 and 20200507 allows a user that is only granted the role "roles/compute.osLogin" to escalate privileges to root. Using their membership to the "adm" group, users with this role are able to read…

  • CVE-2020-8907Jun 22, 2020
    risk 0.00cvss epss 0.00

    A vulnerability in Google Cloud Platform's guest-oslogin versions between 20190304 and 20200507 allows a user that is only granted the role "roles/compute.osLogin" to escalate privileges to root. Using their membership to the "docker" group, an attacker with this role is able to…