Web: https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-1227

April 29, 2022, 4:15 p.m. |

National Vulnerability Database nist.gov

A privilege escalation flaw was found in Podman. This flaw allows an attacker to publish a malicious image to a public registry. Once this image is downloaded by a potential victim, the vulnerability is triggered after a user runs the 'podman top' command. This action gives the attacker access to the host filesystem, leading to information disclosure or denial of service.

cve

Field CISO

@ Rubrik | London, United Kingdom

Android-Savvy Reverse Engineer

@ ARSIEM | Laurel, MD

Junior Information Security Analyst

@ IT Concepts Inc. | Washington, District of Columbia, United States

Senior Network Security Engineer

@ UBDS | England, United Kingdom - Remote

Software Engineer, Security Infrastructure

@ Robinhood | US - Remote

Mid-Level Research Cyber Security Engineer (Hybrid options available)

@ Riverside Research | Beavercreek, Ohio

Security Intelligence Manager, Incident Response

@ Atlassian | Sydney, Australia

Security Consultant, Professional Services

@ Amazon.com | Seoul, KOR

Senior Cybersecurity Architect

@ Lucayan Technology Solutions LLC | Tampa, Florida, United States

Application Security Engineer

@ PlayStation Global | United States, San Francisco, CA

Security Engineer I, Offensive Security Penetration Testing

@ Amazon.com | US, TX, Virtual Location - Texas

Cyber Security Engineer

@ GWA Group | Derrimut, Victoria, Australia