CVE-2022-4123

Summary

A flaw was found in Buildah. The local path and the lowest subdirectory may be disclosed due to incorrect absolute path traversal, resulting in an impact to confidentiality.

Affected Software

VendorProductVersion RangeStatus
n/apodmanPodman 4.3.0affected

Weaknesses

  • CWE-23: CWE-23

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References