Vulnerabilities > Projectatomic

DATE CVE VULNERABILITY TITLE RISK
2020-03-31 CVE-2020-5291 Improper Privilege Management vulnerability in multiple products
Bubblewrap (bwrap) before version 0.4.1, if installed in setuid mode and the kernel supports unprivileged user namespaces, then the `bwrap --userns2` option can be used to make the setuid process keep running as root while being traceable.
7.8
2019-05-29 CVE-2019-12439 Improper Input Validation vulnerability in Projectatomic Bubblewrap
bubblewrap.c in Bubblewrap before 0.3.3 misuses temporary directories in /tmp as a mount point.
local
low complexity
projectatomic CWE-20
7.8
2017-03-29 CVE-2017-5226 Improper Input Validation vulnerability in Projectatomic Bubblewrap
When executing a program via the bubblewrap sandbox, the nonpriv session can escape to the parent session by using the TIOCSTI ioctl to push characters into the terminal's input buffer, allowing an attacker to escape the sandbox.
network
low complexity
projectatomic CWE-20
critical
10.0
2017-03-29 CVE-2016-6349 Information Exposure vulnerability in Projectatomic Oci-Register-Machine
The machinectl command in oci-register-machine allows local users to list running containers and possibly obtain sensitive information by running that command.
local
low complexity
projectatomic CWE-200
3.3