CVE-2021-33637

HIGH

isula - Container Escape

Title source: llm

Description

When the isula export command is used to export a container to an image and the container is controlled by an attacker, the attacker can escape the container.

References (3)

[Patch] https://gitee.com/src-openeuler/iSulad/pulls/600/files

[Patch] https://gitee.com/src-openeuler/iSulad/pulls/627/files

[Vendor Advisory] https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2023-1686

Scores

CVSS v3 8.4

EPSS 0.0003

EPSS Percentile 8.9%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-665

Status published

Products (3)

openeuler/isula 2.0.8-20210518.144540

openeuler/isula 2.0.18-10

openeuler/isula 2.1.2

Published Oct 29, 2023

Tracked Since Feb 18, 2026