Vulnerabilities > Sylabs > High

DATE CVE VULNERABILITY TITLE RISK
2023-04-25 CVE-2023-30549 Use After Free vulnerability in multiple products
Apptainer is an open source container platform for Linux.
local
low complexity
lfprojects sylabs redhat CWE-416
7.8
2023-01-17 CVE-2022-23538 Insufficiently Protected Credentials vulnerability in Sylabs Singularity Container Services Library
github.com/sylabs/scs-library-client is the Go client for the Singularity Container Services (SCS) Container Library Service.
network
low complexity
sylabs CWE-522
7.6
2021-07-19 CVE-2021-33027 Insufficient Entropy vulnerability in Sylabs Singularity
Sylabs Singularity Enterprise through 1.6.2 has Insufficient Entropy in a nonce.
network
low complexity
sylabs CWE-331
7.5
2020-07-14 CVE-2020-13847 Improper Validation of Integrity Check Value vulnerability in Sylabs Singularity
Sylabs Singularity 3.0 through 3.5 lacks support for an Integrity Check.
network
low complexity
sylabs CWE-354
7.5
2020-07-14 CVE-2020-13846 Unspecified vulnerability in Sylabs Singularity
Sylabs Singularity 3.5.0 through 3.5.3 fails to report an error in a Status Code.
network
low complexity
sylabs
7.5
2020-07-14 CVE-2020-13845 Improper Validation of Integrity Check Value vulnerability in Sylabs Singularity
Sylabs Singularity 3.0 through 3.5 has Improper Validation of an Integrity Check Value.
network
low complexity
sylabs CWE-354
7.5
2019-05-14 CVE-2019-11328 Incorrect Permission Assignment for Critical Resource vulnerability in multiple products
An issue was discovered in Singularity 3.1.0 to 3.2.0-rc2, a malicious user with local/network access to the host system (e.g.
network
low complexity
sylabs fedoraproject opensuse CWE-732
8.8
2018-12-17 CVE-2018-19295 Improper Input Validation vulnerability in Sylabs Singularity
Sylabs Singularity 2.4 to 2.6 allows local users to conduct Improper Input Validation attacks.
local
low complexity
sylabs CWE-20
7.2