Vulnerabilities

CVE-2021-3762

by Fred · 03/03/2022

A directory traversal vulnerability was found in the ClairCore engine of Clair. An attacker can exploit this by supplying a crafted container image which, when scanned by Clair, allows for arbitrary file write on the filesystem, potentially allowing for remote code execution.

Date published : 2022-03-03

https://bugzilla.redhat.com/show_bug.cgi?id=2000795

https://github.com/quay/clair/pull/1379

Similar

Tags: Cybersecurity Alert