Main Vulnerability Database Exploits ID:5032 - Exploit for Improper access control in containerd - CVE-2020-15257

ID:5032 - Exploit for Improper access control in containerd - CVE-2020-15257

Published: January 18, 2021

Vulnerability identifier: #VU48795

Vulnerability risk: Medium

CVE-ID: CVE-2020-15257

CWE-ID: CWE-284

Exploitation vector: Local access

Vulnerable software:
containerd

Link to public exploit:

https://github.com/nccgroup/abstractshimmer

Vulnerability description

The vulnerability allows a remote attacker to gain unauthorized access to otherwise restricted functionality.

The vulnerability exists due to improper access restrictions. Access controls for the shim’s API socket verified that the connecting process had an effective UID of 0, but did not otherwise restrict access to the abstract Unix domain socket. This would allow malicious containers running in the same network namespace as the shim, with an effective UID of 0 but otherwise reduced privileges, to cause new processes to be run with elevated privileges.

Remediation

Install updates from vendor's website.

ID:5032 - Exploit for Improper access control in containerd - CVE-2020-15257

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human