CVE-2024-21626

This repository provides functional exploit code for CVE-2024-21626, a container escape vulnerability in runc. It includes multiple methods to exploit the vulnerability via Docker containers and runc directly, along with detection techniques using Falco and Snyk's leaky-vessels-dynamic-detector.

This repository contains a functional proof-of-concept exploit for CVE-2024-21626, a container escape vulnerability in runc. The exploit leverages the `openat2` syscall to manipulate file descriptors and achieve a reverse shell, demonstrating container breakout.

This repository contains a functional proof-of-concept exploit for CVE-2024-21626, a container escape vulnerability in runc. The exploit leverages an open file descriptor leak to overwrite host system files (e.g., crontab or binary files) and achieve command execution on the host.

This repository provides a functional exploit for CVE-2024-21626, leveraging leaked file descriptors in runc to escape container isolation and access host files. The PoC uses Docker containers with manipulated working directories to exploit the vulnerability.

This repository provides a detailed technical writeup on exploiting CVE-2024-21626, a vulnerability in runc that allows container escape via directory traversal and file descriptor manipulation. It includes steps to reproduce the issue, kernel version checks, and verification of the exploit's impact.

This repository demonstrates CVE-2024-21626, a vulnerability in runc (container runtime) that allows container escape to host root via path traversal in `/proc/self/fd/8`. The PoC injects an SSH key into the host's `/root/.ssh/authorized_keys` by exploiting the vulnerability during container build/run.

This repository provides a functional exploit for CVE-2024-21626, a vulnerability in runc (versions 1.1.0 to 1.1.11) that allows container escape to achieve root privileges on the host machine. The exploit involves manipulating file descriptors in Docker containers to overwrite host binaries and establish a reverse shell.

This repository contains a functional exploit for CVE-2024-21626, leveraging Docker's improper handling of `/proc/self/fd/` paths to achieve container escape and host filesystem access. The PoC includes multiple attack vectors (e.g., `docker run` with malicious working directory, `docker exec` with symlink manipulation) and demonstrates file read/write capabilities on the host.

This repository contains a functional PoC for CVE-2024-21626, a vulnerability in runc (<=1.1.11) where a leaked file descriptor allows container escape. It includes a Go-based vulnerable app and an eBPF gadget to detect exploitation via symlinkat syscalls.

This repository provides a detailed technical analysis of CVE-2024-21626, a container escape vulnerability in runc due to a file descriptor leak. It includes root cause analysis, exploitation methods, and mitigation strategies.

This repository provides a detailed technical analysis of CVE-2024-21626, a container escape vulnerability in runc ≤ 1.1.11 due to a file descriptor leak. It includes root cause analysis, exploitation methods, and mitigation strategies.

This repository provides functional exploit code for CVE-2024-21626, a container breakout vulnerability in runC, containerd, and Docker. The exploit leverages improper handling of working directory paths in `/proc/self/fd/` to escape container isolation and access host filesystem.

This repository contains a functional exploit PoC for CVE-2024-21626, leveraging a container escape vulnerability in runc to achieve remote code execution (RCE) via a reverse shell. The exploit uses a Docker container to manipulate file descriptors and execute arbitrary commands on the host system.

This repository provides a detailed technical analysis of CVE-2024-21626, a container escape vulnerability in runc due to a file descriptor leak. It includes root cause analysis, exploitation methods, and mitigation strategies.

This repository contains a working proof-of-concept exploit for CVE-2025-31133, a container escape vulnerability in runc. The exploit leverages eBPF to manipulate the core_pattern handler, achieving privilege escalation from within a container to the host system.

This repository contains a functional PoC for CVE-2024-21626, a container escape vulnerability in runc ≤1.1.11 due to improper handling of file descriptors in cgroup setup. The exploit leverages an open file descriptor to manipulate the working directory of a container, allowing access to the host filesystem.

The repository contains two bash scripts that do not demonstrate any exploit for CVE-2024-21626. Instead, they display humorous messages and modify the terminal prompt, serving as a placeholder or joke rather than a functional PoC.

This repository contains a functional exploit for CVE-2024-21626, demonstrating a container escape vulnerability in older Docker versions due to file descriptor (fd) leakage. The provided script `checkVulnerability.sh` iterates through potential file descriptors to identify and exploit the vulnerability, allowing access to the host filesystem.

This Dockerfile exploits CVE-2024-21626 by leveraging a container escape vulnerability to read the host's /etc/passwd file. The exploit uses a path traversal technique via /proc/self/fd/8 to access the host filesystem.

This repository contains a functional exploit for CVE-2024-21626, leveraging a container escape vulnerability in runc. The PoC uses a Docker container to overwrite /bin/bash with a malicious script that establishes a reverse shell.

This Metasploit module exploits CVE-2024-21626, a file descriptor leak in runc (used by Docker and Kubernetes) to achieve privilege escalation by mounting the host filesystem with root permissions. It includes checks for vulnerable versions and automates the exploitation process.