Vulnerabilities > Linuxfoundation > Medium

DATE CVE VULNERABILITY TITLE RISK
2022-03-24 CVE-2022-24769 Moby is an open-source project created by Docker to enable and accelerate software containerization. 5.9
5.9
2021-12-06 CVE-2021-43784 runc is a CLI tool for spawning and running containers on Linux according to the OCI specification.
network
high complexity
linuxfoundation debian
5.0
5.0
2021-11-26 CVE-2021-43776 Unspecified vulnerability in Linuxfoundation Auth Backend
Backstage is an open platform for building developer portals.
network
low complexity
linuxfoundation
6.1
6.1
2021-11-17 CVE-2021-41190 The OCI Distribution Spec project defines an API protocol to facilitate and standardize the distribution of content.
network
low complexity
linuxfoundation fedoraproject
5.0
5.0
2021-10-18 CVE-2021-41151 Path Traversal vulnerability in Linuxfoundation Backstage
Backstage is an open platform for building developer portals.
network
low complexity
linuxfoundation CWE-22
4.9
4.9
2021-08-03 CVE-2021-36157 Path Traversal vulnerability in Linuxfoundation Cortex
An issue was discovered in Grafana Cortex through 1.9.0.
network
low complexity
linuxfoundation CWE-22
5.3
5.3
2021-07-19 CVE-2021-32760 Incorrect Permission Assignment for Critical Resource vulnerability in multiple products
containerd is a container runtime.
network
low complexity
linuxfoundation fedoraproject CWE-732
6.3
6.3
2021-06-03 CVE-2021-32662 Unspecified vulnerability in Linuxfoundation Backstage
Backstage is an open platform for building developer portals, and techdocs-common contains common functionalities for Backstage's TechDocs.
network
low complexity
linuxfoundation
6.5
6.5
2021-04-30 CVE-2021-31232 Unspecified vulnerability in Linuxfoundation Cortex
The Alertmanager in CNCF Cortex before 1.8.1 has a local file disclosure vulnerability when -experimental.alertmanager.enable-api is used.
local
low complexity
linuxfoundation
5.5
5.5
2021-04-06 CVE-2021-29136 Improper Input Validation vulnerability in multiple products
Open Container Initiative umoci before 0.4.7 allows attackers to overwrite arbitrary host paths via a crafted image that causes symlink traversal when "umoci unpack" or "umoci raw unpack" is used.
local
low complexity
linuxfoundation sylabs CWE-20
5.5
5.5