VIR Vulnerability Intelligence Relay

Package impact

golang Go / github.com/containerd/containerd

Severitycriticalhighmediumlowunknown
0
KEVHas exploit
Reset
CVE Severity CVSS Risk Published Description Impact
CVE-2026-46680 high 8.0 7d ago containerd user ID handling bypass allows runAsNonRoot evasion golang
CVE-2020-15257 high 8.0 5y ago containerd-shim API Exposed to Host Network Containers in github.com/containerd/containerd archdebiansusegolang
CVE-2021-21334 medium 5.5 2y ago containerd environment variable leak archdebiansusegolang
CVE-2023-25173 medium 5.5 3y ago Moderate: container-tools:rhel8 security and bug fix update rockylinuxredhatdebiansuse+1
CVE-2021-41103 medium 5.5 5y ago Insufficiently restricted permissions on plugin directories in github.com/containerd/containerd archdebiansusegolang
CVE-2021-32760 medium 5.5 5y ago Archive package allows chmod of file outside of unpack target directory in github.com/containerd/containerd archdebiansusegolang
CVE-2025-64329 unknown 7mo ago containerd CRI server: Host memory exhaustion through Attach goroutine leak in github.com/containerd/containerd debiansusegolang
CVE-2024-25621 unknown 7mo ago containerd affected by a local privilege escalation via wide permissions on CRI directory in github.com/containerd/containerd debiansusegolang
CVE-2024-40635 unknown 1y ago containerd has an integer overflow in User ID handling in github.com/containerd/containerd debiansusegolang
CVE-2023-25153 unknown 3y ago Memory exhaustion via OCI image importer in github.com/containerd/containerd debiansusegolang
CVE-2022-23471 unknown 4y ago containerd CRI stream server vulnerable to host memory exhaustion via terminal in github.com/containerd/containerd debiansusegolang
CVE-2022-31030 unknown 4y ago containerd CRI plugin: Host memory exhaustion through ExecSync in github.com/containerd/containerd archdebiangolang
CVE-2022-23648 unknown 4y ago containerd CRI plugin: Insecure handling of image volumes in github.com/containerd/containerd archdebiansusegolang
CVE-2020-15157 unknown 4y ago containerd v1.2.x can be coerced into leaking credentials during image pull in github.com/containerd/containerd debiansusegolang
CVE-2021-43816 unknown 4y ago Unprivileged pod using `hostPath` can side-step active LSM when it is SELinux in github.com/containerd/containerd debiansusegolang