CVE-2021-33637

Summary

When the isula export command is used to export a container to an image and the container is controlled by an attacker, the attacker can escape the container.

Affected Software

VendorProductVersion RangeStatus
openEuleriSulad0 <= 2.0.8-20210518.144540.git5288ed93,2.0.18-10,2.1.2affected

Weaknesses

  • CWE-665: CWE-665 Improper Initialization

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References