Vulnerabilities > CVE-2021-33638 - Unspecified vulnerability in Openeuler Isula 2.0.1810/2.0.820210518.144540/2.1.2
Attack vector
LOCAL Attack complexity
LOW Privileges required
LOW Confidentiality impact
NONE Integrity impact
HIGH Availability impact
NONE Summary
When the isula cp command is used to copy files from a container to a host machine and the container is controlled by an attacker, the attacker can escape the container.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 3 |
References
- https://gitee.com/src-openeuler/iSulad/pulls/600/files
- https://gitee.com/src-openeuler/iSulad/pulls/600/files
- https://gitee.com/src-openeuler/iSulad/pulls/627/files
- https://gitee.com/src-openeuler/iSulad/pulls/627/files
- https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2023-1686
- https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2023-1686