Aqua Vulnerability Database
Get Demo
Vulnerabilities
Misconfiguration
Runtime Security
Compliance
CVE Vulnerabilities
CVE-2021-33634
Published:
Oct 29, 2023
| Modified:
Nov 08, 2023
CVSS 3.x
5.5
MEDIUM
Source:
NVD
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
CVSS 2.x
RedHat/V2
RedHat/V3
Ubuntu
Additional information
NVD
https://nvd.nist.gov/vuln/detail/CVE-2021-33634
CWE
https://cwe.mitre.org/data/definitions/.html
iSulad uses the lcr+lxc runtime (default) to run malicious images, which can cause DOS.
Affected Software
Name
Vendor
Start Version
End Version
Icr
Openeuler
*
2.0.9-6 (excluding)
Icr
Openeuler
2.1.0 (including)
2.1.2-3 (excluding)
References
https://gitee.com/src-openeuler/lcr/pulls/251/files
https://gitee.com/src-openeuler/lcr/pulls/257/files
https://www.openeuler.org/en/security/security-bulletins/detail/?id=openEuler-SA-2023-1692
Aqua Container Security