CVE-2021-41103
published 2021-10-04CVE-2021-41103: containerd is an open source container runtime with an emphasis on simplicity, robustness and portability. A bug was found in containerd where container root…
PriorityP341high7.8CVSS 3.1
AVLACLPRLUINSUCHIHAH
EPSS
0.48%
37.9th percentile
containerd is an open source container runtime with an emphasis on simplicity, robustness and portability. A bug was found in containerd where container root directories and some plugins had insufficiently restricted permissions, allowing otherwise unprivileged Linux users to traverse directory contents and execute programs. When containers included executable programs with extended permission bits (such as setuid), unprivileged Linux users could discover and execute those programs. When the UID of an unprivileged Linux user on the host collided with the file owner or group inside a container, the unprivileged Linux user on the host could discover, read, and modify those files. This vulnerability has been fixed in containerd 1.4.11 and containerd 1.5.7. Users should update to these version when they are released and may restart containers or update directory permissions to mitigate the vulnerability. Users unable to update should limit access to the host to trusted users. Update directory permission on container bundles directories.
Affected
17 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| containerd | containerd | < 1.4.11 | 1.4.11 |
| containerd | containerd | — | — |
| containerd | containerd | >= 0 < 1.4.5~ds1-2+deb11u1 | 1.4.5~ds1-2+deb11u1 |
| containerd | containerd | >= 0 < 1.5.7~ds1-1 | 1.5.7~ds1-1 |
| containerd | containerd | >= 0 < 1.5.7~ds1-1 | 1.5.7~ds1-1 |
| containerd | containerd | >= 0 < 1.5.7~ds1-1 | 1.5.7~ds1-1 |
| containerd | containerd | >= 0 < 1.2.6-0ubuntu1~16.04.6+esm2 | 1.2.6-0ubuntu1~16.04.6+esm2 |
| debian | containerd | < containerd 1.5.7~ds1-1 (bookworm) | containerd 1.5.7~ds1-1 (bookworm) |
| debian | debian_linux | — | — |
| fedoraproject | fedora | — | — |
| fedoraproject | fedora | — | — |
| github.com | containerd_containerd | >= 0 < 1.4.11 | 1.4.11 |
| github.com | containerd_containerd | >= 1.5.0 < 1.5.7 | 1.5.7 |
| linuxfoundation | containerd | < 1.4.11 | 1.4.11 |
| linuxfoundation | containerd | >= 1.5.0 < 1.5.7 | 1.5.7 |
| msrc | cbl2_moby-containerd_1.4.4+azure-4_on_cbl_mariner_2.0 | — | — |
| msrc | cm1_moby-containerd_1.4.4+azure-4_on_cbl_mariner_1.0 | — | — |
CVSS provenance
nvdv3.17.8HIGHCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
nvdv3.05.9MEDIUMCVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
nvdv2.07.2HIGHAV:L/AC:L/Au:N/C:C/I:C/A:C
osv7.8HIGH
vendor_debian7.8HIGH
vendor_msrc7.8HIGH
vendor_redhat7.8HIGH
vendor_ubuntu5.0MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
OSV
Insufficiently restricted permissions on plugin directories in github.com/containerd/containerd
osv·2024-08-21
CVE-2021-41103 Insufficiently restricted permissions on plugin directories in github.com/containerd/containerd
Insufficiently restricted permissions on plugin directories in github.com/containerd/containerd
Insufficiently restricted permissions on plugin directories in github.com/containerd/containerd
OSV
containerd vulnerabilities
osv·2022-07-15·CVSS 6.3
CVE-2021-41103 [MEDIUM] containerd vulnerabilities
containerd vulnerabilities
It was discovered that containerd insufficiently restricted permissions on
container root and plugin directories. If a user or automated system were
tricked into launching a specially crafted container image, a remote
attacker could traverse directory contents and modify files and execute
programs on the host file system, possibly leading to privilege escalation.
(CVE-2021-41103)
It was discovered that containerd incorrectly handled file permission
changes. If a user or automated system were tricked into launching a
specially crafted container image, a remote attacker could change
permissions on files on the host file system and possibly escalate
privileges. (CVE-2021-32760)
It was discovered that containerd allows attackers to gain access to read-
only copies
OSV
CVE-2021-41103: containerd is an open source container runtime with an emphasis on simplicity, robustness and portability
osv·2021-10-04·CVSS 7.8
CVE-2021-41103 [HIGH] CVE-2021-41103: containerd is an open source container runtime with an emphasis on simplicity, robustness and portability
containerd is an open source container runtime with an emphasis on simplicity, robustness and portability. A bug was found in containerd where container root directories and some plugins had insufficiently restricted permissions, allowing otherwise unprivileged Linux users to traverse directory contents and execute programs. When containers included executable programs with extended permission bits (such as setuid), unprivileged Linux users could discover and execute those programs. When the UID of an unprivileged Linux user on the host collided with the file owner or group inside a container, the unprivileged Linux user on the host could discover, read, and modify those files. This vulnerability has been fixed in containerd 1.4.11 and containerd 1.5.7. Users should update to these version
GHSA
Insufficiently restricted permissions on plugin directories
ghsa·2021-10-04
CVE-2021-41103 [MEDIUM] CWE-22 Insufficiently restricted permissions on plugin directories
Insufficiently restricted permissions on plugin directories
### Impact
A bug was found in containerd where container root directories and some plugins had insufficiently restricted permissions, allowing otherwise unprivileged Linux users to traverse directory contents and execute programs. When containers included executable programs with extended permission bits (such as setuid), unprivileged Linux users could discover and execute those programs. When the UID of an unprivileged Linux user on the host collided with the file owner or group inside a container, the unprivileged Linux user on the host could discover, read, and modify those files.
### Patches
This vulnerability has been fixed in containerd 1.4.11 and containerd 1.5.7. Users should update to these version when they are release
OSV
Insufficiently restricted permissions on plugin directories
osv·2021-10-04
CVE-2021-41103 [MEDIUM] Insufficiently restricted permissions on plugin directories
Insufficiently restricted permissions on plugin directories
### Impact
A bug was found in containerd where container root directories and some plugins had insufficiently restricted permissions, allowing otherwise unprivileged Linux users to traverse directory contents and execute programs. When containers included executable programs with extended permission bits (such as setuid), unprivileged Linux users could discover and execute those programs. When the UID of an unprivileged Linux user on the host collided with the file owner or group inside a container, the unprivileged Linux user on the host could discover, read, and modify those files.
### Patches
This vulnerability has been fixed in containerd 1.4.11 and containerd 1.5.7. Users should update to these version when they are release
Ubuntu
containerd vulnerabilities
vendor_ubuntu·2022-07-15·CVSS 5.0
CVE-2021-32760 [MEDIUM] containerd vulnerabilities
Title: containerd vulnerabilities
Summary: Several security issues were fixed in containerd.
It was discovered that containerd insufficiently restricted permissions on
container root and plugin directories. If a user or automated system were
tricked into launching a specially crafted container image, a remote
attacker could traverse directory contents and modify files and execute
programs on the host file system, possibly leading to privilege escalation.
(CVE-2021-41103)
It was discovered that containerd incorrectly handled file permission
changes. If a user or automated system were tricked into launching a
specially crafted container image, a remote attacker could change
permissions on files on the host file system and possibly escalate
privileges. (CVE-2021-32760)
It was discovered t
CISA ICS
Siemens SCALANCE LPE9403 Third-Party Vulnerabilities
cisa_ics·2022-06-16·CVSS 9.8
[CRITICAL] Siemens SCALANCE LPE9403 Third-Party Vulnerabilities
## Archived Content In an effort to keep CISA.gov current, the archive contains outdated information that may not reflect current policy or programs.
ICS Advisory
##
Siemens SCALANCE LPE9403 Third-Party Vulnerabilities
Last RevisedJune 16, 2022
Alert CodeICSA-22-167-09
## 1. EXECUTIVE SUMMARY
- CVSS v3 9.8
- ATTENTION: Exploitable remotely, low attack complexity
- Vendor: Siemens
- Equipment: SCALANCE LPE9403
- Vulnerabilities: Multiple
## 2. RISK EVALUATION
Successful exploitation of these vulnerabilities could cause crashes and unrestricted file access, impacting the product’s confidentiality, integrity, and availability.
## 3. TECHNICAL DETAILS
## 3.1 AFFECTED PRODUCTS
The following versions of SCALANCE LPE9403 (Local Processing
Microsoft
Insufficiently restricted permissions on plugin directories
vendor_msrc·2021-10-12·CVSS 7.8
CVE-2021-41103 [HIGH] CWE-22 Insufficiently restricted permissions on plugin directories
Insufficiently restricted permissions on plugin directories
FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability?
One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is composed. Microsoft is committed to transparency in this work which is why we began publishing CSAF/VEX in October 2025. See this blog post for more information. If impact to additional products is identified, we will update the CVE to reflect this.
Mariner: Mariner
GitHub_M: GitHub_M
Customer Action Required: Yes
Remediation: CBL-Mariner Releases
Reference: htt
Ubuntu
containerd vulnerability
vendor_ubuntu·2021-10-04
CVE-2021-41103 containerd vulnerability
Title: containerd vulnerability
Summary: containerd would allow unintended access to files.
It was discovered that containerd insufficiently restricted permissions on
container root and plugin directories. If a user or automated system were
tricked into launching a specially crafted container image, a remote
attacker could traverse directory contents and modify files and execute
programs on the host filesystem, possibly leading to privilege escalation.
Instructions: After a standard system update you need to restart containerd to make
all the necessary changes.
Red Hat
containerd: insufficiently restricted permissions on container root and plugin directories
vendor_redhat·2021-10-04·CVSS 7.8
CVE-2021-41103 [HIGH] CWE-22 containerd: insufficiently restricted permissions on container root and plugin directories
containerd: insufficiently restricted permissions on container root and plugin directories
containerd is an open source container runtime with an emphasis on simplicity, robustness and portability. A bug was found in containerd where container root directories and some plugins had insufficiently restricted permissions, allowing otherwise unprivileged Linux users to traverse directory contents and execute programs. When containers included executable programs with extended permission bits (such as setuid), unprivileged Linux users could discover and execute those programs. When the UID of an unprivileged Linux user on the host collided with the file owner or group inside a container, the unprivileged Linux user on the host could discover, read, and modify those files. This vulnerability ha
Debian
CVE-2021-41103: containerd - containerd is an open source container runtime with an emphasis on simplicity, r...
vendor_debian·2021·CVSS 7.8
CVE-2021-41103 [HIGH] CVE-2021-41103: containerd - containerd is an open source container runtime with an emphasis on simplicity, r...
containerd is an open source container runtime with an emphasis on simplicity, robustness and portability. A bug was found in containerd where container root directories and some plugins had insufficiently restricted permissions, allowing otherwise unprivileged Linux users to traverse directory contents and execute programs. When containers included executable programs with extended permission bits (such as setuid), unprivileged Linux users could discover and execute those programs. When the UID of an unprivileged Linux user on the host collided with the file owner or group inside a container, the unprivileged Linux user on the host could discover, read, and modify those files. This vulnerability has been fixed in containerd 1.4.11 and containerd 1.5.7. Users should update to these version
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
https://cert-portal.siemens.com/productcert/pdf/ssa-222547.pdfhttps://github.com/containerd/containerd/commit/5b46e404f6b9f661a205e28d59c982d3634148f8https://github.com/containerd/containerd/security/advisories/GHSA-c2h3-6mxw-7mvqhttps://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/B5Q6G6I4W5COQE25QMC7FJY3I3PAYFBB/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZNFADTCHHYWVM6W4NJ6CB4FNFM2VMBIB/https://security.gentoo.org/glsa/202401-31https://www.debian.org/security/2021/dsa-5002https://cert-portal.siemens.com/productcert/pdf/ssa-222547.pdfhttps://github.com/containerd/containerd/commit/5b46e404f6b9f661a205e28d59c982d3634148f8https://github.com/containerd/containerd/security/advisories/GHSA-c2h3-6mxw-7mvqhttps://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/B5Q6G6I4W5COQE25QMC7FJY3I3PAYFBB/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZNFADTCHHYWVM6W4NJ6CB4FNFM2VMBIB/https://security.gentoo.org/glsa/202401-31https://www.debian.org/security/2021/dsa-5002
2021-10-04
Published