Vulnerabilities > Projectatomic

DATE	CVE	VULNERABILITY TITLE	RISK
2020-03-31	CVE-2020-5291	Improper Privilege Management vulnerability in multiple products Bubblewrap (bwrap) before version 0.4.1, if installed in setuid mode and the kernel supports unprivileged user namespaces, then the `bwrap --userns2` option can be used to make the setuid process keep running as root while being traceable. network projectatomic debian archlinux centos CWE-269	8.5
2019-05-29	CVE-2019-12439	Improper Input Validation vulnerability in Projectatomic Bubblewrap bubblewrap.c in Bubblewrap before 0.3.3 misuses temporary directories in /tmp as a mount point. local low complexity projectatomic CWE-20	4.6
2017-03-29	CVE-2017-5226	Improper Input Validation vulnerability in Projectatomic Bubblewrap When executing a program via the bubblewrap sandbox, the nonpriv session can escape to the parent session by using the TIOCSTI ioctl to push characters into the terminal's input buffer, allowing an attacker to escape the sandbox. network low complexity projectatomic CWE-20 critical	10.0
2017-03-29	CVE-2016-6349	Information Exposure vulnerability in Projectatomic Oci-Register-Machine The machinectl command in oci-register-machine allows local users to list running containers and possibly obtain sensitive information by running that command. local low complexity projectatomic CWE-200	2.1

Vulnerabilities > Projectatomic {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Projectatomic"}]}