Vulnerabilities > Sylabs > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-06-15 | CVE-2021-33622 | Improper Check for Unusual or Exceptional Conditions vulnerability in Sylabs Singularity and Singularitypro Sylabs Singularity 3.5.x and 3.6.x, and SingularityPRO before 3.5-8, has an Incorrect Check of a Function's Return Value. | 6.8 |
| 2021-05-28 | CVE-2021-32635 | Improper Restriction of Communication Channel to Intended Endpoints vulnerability in Sylabs Singularity 3.7.2/3.7.3 Singularity is an open source container platform. | 6.8 |
| 2021-05-07 | CVE-2021-29499 | Use of Insufficiently Random Values vulnerability in Sylabs Singularity Image Format SIF is an open source implementation of the Singularity Container Image Format. | 4.0 |
| 2020-09-16 | CVE-2020-25040 | Incorrect Permission Assignment for Critical Resource vulnerability in multiple products Sylabs Singularity through 3.6.2 has Insecure Permissions on temporary directories used in explicit and implicit container build operations, a different vulnerability than CVE-2020-25039. | 6.5 |
| 2020-09-16 | CVE-2020-25039 | Incorrect Permission Assignment for Critical Resource vulnerability in multiple products Sylabs Singularity 3.2.0 through 3.6.2 has Insecure Permissions on temporary directories used in fakeroot or user namespace container execution. | 5.5 |
| 2019-12-18 | CVE-2019-19724 | Incorrect Default Permissions vulnerability in Sylabs Singularity Insecure permissions (777) are set on $HOME/.singularity when it is newly created by Singularity (version from 3.3.0 to 3.5.1), which could lead to an information leak, and malicious redirection of operations performed against Sylabs cloud services. | 5.0 |
| 2018-07-05 | CVE-2018-12021 | Information Exposure vulnerability in Sylabs Singularity Singularity 2.3.0 through 2.5.1 is affected by an incorrect access control on systems supporting overlay file system. | 6.8 |