Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
4.3
CVSSv2

CVE-2020-1702

Published: 27/05/2021 Updated: 10/06/2021
CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6
CVSS v3 Base Score: 3.3 | Impact Score: 1.4 | Exploitability Score: 1.8
VMScore: 383
Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P
Subscribe to Containers-image

Vulnerability Summary

A malicious container image can consume an unbounded amount of memory when being pulled to a container runtime host, such as Red Hat Enterprise Linux using podman, or OpenShift Container Platform. An attacker can use this flaw to trick a user, with privileges to pull container images, into crashing the process responsible for pulling the image. This flaw affects containers-image versions prior to 5.2.0.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

containers-image project containers-image

redhat enterprise linux 8.0

Vendor Advisories

Red Hat: Low: OpenShift Container Platform 3.11 security update
Synopsis Low: OpenShift Container Platform 311 security update Type/Severity Security Advisory: Low Topic Red Hat OpenShift Container Platform release 311219 is now available withupdates to packages and images that fix several bugs and add enhancementsRed Hat Product Security has rated this update as ha ...
Red Hat: Important: buildah security and bug fix update
Synopsis Important: buildah security and bug fix update Type/Severity Security Advisory: Important Topic An update for buildah is now available for Red Hat Enterprise Linux 7 ExtrasRed Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring System ...
Red Hat: Moderate: podman security, bug fix, and enhancement update
Synopsis Moderate: podman security, bug fix, and enhancement update Type/Severity Security Advisory: Moderate Topic An update for podman is now available for Red Hat Enterprise Linux 7 ExtrasRed Hat Product Security has rated this update as having a security impact of Moderate A Common Vulnerability Scori ...
Red Hat: Moderate: container-tools:rhel8 security, bug fix, and enhancement update
Synopsis Moderate: container-tools:rhel8 security, bug fix, and enhancement update Type/Severity Security Advisory: Moderate Topic An update for the container-tools:rhel8 module is now available for Red Hat Enterprise Linux 8Red Hat Product Security has rated this update as having a security impact of Mode ...
Red Hat: Low: skopeo security and bug fix update
Synopsis Low: skopeo security and bug fix update Type/Severity Security Advisory: Low Topic An update for skopeo is now available for Red Hat Enterprise Linux 7 ExtrasRed Hat Product Security has rated this update as having a security impact of Low A Common Vulnerability Scoring System (CVSS) base score, ...
Red Hat: Moderate: docker security and bug fix update
Synopsis Moderate: docker security and bug fix update Type/Severity Security Advisory: Moderate Topic An update for docker is now available for Red Hat Enterprise Linux 7 ExtrasRed Hat Product Security has rated this update as having a security impact of Moderate A Common Vulnerability Scoring System (CVS ...

References

CWE-400https://bugzilla.redhat.com/show_bug.cgi?id=1792796https://nvd.nist.govhttps://access.redhat.com/errata/RHSA-2020:2218
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4644unprivilegedCVE-2024-3494CVE-2024-22460CVE-2024-26026CVE-2024-23473firewallCVE-2024-28889XML external entity
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook