High

DATE	CVE	VULNERABILITY TITLE	RISK
2022-09-13	CVE-2022-2989	An incorrect handling of the supplementary groups in the Podman container engine might lead to the sensitive information disclosure or possible data modification if an attacker has direct access to the affected container where supplementary groups are used to set access permissions and is able to execute a binary code in that container. local low complexity podman-project redhat	7.1
2022-09-01	CVE-2022-2738	The version of podman as released for Red Hat Enterprise Linux 7 Extras via RHSA-2022:2190 advisory included an incorrect version of podman missing the fix for CVE-2020-8945, which was previously fixed via RHSA-2020:2117. network high complexity redhat podman-project	7.5
2022-06-09	CVE-2019-25067	A vulnerability, which was classified as critical, was found in Podman and Varlink 1.5.1. network low complexity podman-project varlink	8.8
2022-04-29	CVE-2022-1227	Improper Privilege Management vulnerability in multiple products A privilege escalation flaw was found in Podman. network low complexity podman-project psgo-project redhat fedoraproject CWE-269	8.8
2022-04-04	CVE-2022-27649	Incorrect Default Permissions vulnerability in multiple products A flaw was found in Podman, where containers were started incorrectly with non-empty default permissions. network high complexity podman-project redhat fedoraproject CWE-276	7.5
2021-02-11	CVE-2021-20188	A flaw was found in podman before 1.7.0. local high complexity podman-project redhat	7.0