cbcvebase.
CVE-2024-40635
published 2025-03-17

CVE-2024-40635: containerd is an open-source container runtime. A bug was found in containerd prior to versions 1.6.38, 1.7.27, and 2.0.4 where containers launched with a User…

PriorityP341high7.8CVSS 3.1
AVLACLPRLUINSUCHIHAH
EPSS
0.27%
19.2th percentile
containerd is an open-source container runtime. A bug was found in containerd prior to versions 1.6.38, 1.7.27, and 2.0.4 where containers launched with a User set as a `UID:GID` larger than the maximum 32-bit signed integer can cause an overflow condition where the container ultimately runs as root (UID 0). This could cause unexpected behavior for environments that require containers to run as a non-root user. This bug has been fixed in containerd 1.6.38, 1.7.27, and 2.04. As a workaround, ensure that only trusted images are used and that only trusted users have permissions to import images.

Affected

25 ranges
VendorProductVersion rangeFixed in
containerdcontainerd< 1.6.381.6.38
containerdcontainerd
containerdcontainerd
containerdcontainerd>= 0 < 1.4.13~ds1-1~deb11u51.4.13~ds1-1~deb11u5
containerdcontainerd>= 0 < 1.6.20~ds1-1+deb12u21.6.20~ds1-1+deb12u2
containerdcontainerd>= 0 < 1.7.24~ds1-61.7.24~ds1-6
containerdcontainerd>= 0 < 1.7.24~ds1-61.7.24~ds1-6
debiancontainerd< containerd 1.6.20~ds1-1+deb12u2 (bookworm)containerd 1.6.20~ds1-1+deb12u2 (bookworm)
debiandebian_linux
github.comcontainerd_containerd>= 0 < 1.6.381.6.38
github.comcontainerd_containerd>= 1.7.0-beta.0 < 1.7.271.7.27
github.comcontainerd_containerd>= 1.7.27 < 1.7.321.7.32
github.comcontainerd_containerd_v2>= 0 < 2.0.42.0.4
github.comcontainerd_containerd_v2>= 2.0.4 < 2.0.92.0.9
github.comcontainerd_containerd_v2>= 2.1.0-beta.0 < 2.2.42.2.4
github.comcontainerd_containerd_v2>= 2.3.0-beta.0 < 2.3.12.3.1
linuxfoundationcontainerd< 1.6.381.6.38
linuxfoundationcontainerd>= 1.7.0 < 1.7.271.7.27
linuxfoundationcontainerd>= 2.0.0 < 2.0.42.0.4
msrcazl3_containerd2_2.0.0-8_on_azure_linux_3.0
msrcazl3_containerd2_2.0.0-9_on_azure_linux_3.0
msrcazl3_containerd_1.7.13-8_on_azure_linux_3.0
msrcazl3_moby-containerd-cc_1.7.7-9_on_azure_linux_3.0
msrccbl2_moby-containerd-cc_1.7.7-11_on_cbl_mariner_2.0
msrccbl2_moby-containerd_1.6.26-11_on_cbl_mariner_2.0

CVSS provenance

nvdv3.17.8HIGHCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
ghsa7.8HIGH
osv7.8HIGH
vendor_debian4.6MEDIUM
vendor_msrc4.6MEDIUM
vendor_redhat4.6MEDIUM
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.