CVE-2021-3762CRITICALCVSS 9.8vAffects v0.4.6 and higher, v0.5.3 and higher | Fixedin claircore v0.4.8, v0.5.5.2022-03-03
CVE-2021-3762 [CRITICAL] CWE-22 CVE-2021-3762: A directory traversal vulnerability was found in the ClairCore engine of Clair. An attacker can expl
A directory traversal vulnerability was found in the ClairCore engine of Clair. An attacker can exploit this by supplying a crafted container image which, when scanned by Clair, allows for arbitrary file write on the filesystem, potentially allowing for remote code execution.
cvelistv5nvd