CVE-2021-33637

HIGH

openeuler isula - Container Escape via Export Command

Title source: llm

Description

When the isula export command is used to export a container to an image and the container is controlled by an attacker, the attacker can escape the container.

References (3)

Core 3

Core References

Patch

https://gitee.com/src-openeuler/iSulad/pulls/600/files

Patch

https://gitee.com/src-openeuler/iSulad/pulls/627/files

Vendor Advisory

https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2023-1686

Scores

CVSS v3 8.4

EPSS 0.0021

EPSS Percentile 10.7%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-665

Status published

Products (3)

openeuler/isula 2.0.8-20210518.144540

openeuler/isula 2.0.18-10

openeuler/isula 2.1.2

Published Oct 29, 2023

Tracked Since Feb 18, 2026