{"uuid": "e70629ce-10e1-4805-a3e6-fc0b10ffa5ee", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-21626", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/16539", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-21626\n\ud83d\udd25 CVSS Score: 8.6 (cvssV3_1, Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H)\n\ud83d\udd39 Description: runc is a CLI tool for spawning and running containers on Linux according to the OCI specification. In runc 1.1.11 and earlier, due to an internal file descriptor leak, an attacker could cause a newly-spawned container process (from runc exec) to have a working directory in the host filesystem namespace, allowing for a container escape by giving access to the host filesystem (\"attack 2\"). The same attack could be used by a malicious image to allow a container process to gain access to the host filesystem through runc run (\"attack 1\"). Variants of attacks 1 and 2 could be also be used to overwrite semi-arbitrary host binaries, allowing for complete container escapes (\"attack 3a\" and \"attack 3b\"). runc 1.1.12 includes patches for this issue.\n\ud83d\udccf Published: 2024-01-31T21:31:14.391Z\n\ud83d\udccf Modified: 2025-05-15T16:02:34.619Z\n\ud83d\udd17 References:\n1. https://github.com/opencontainers/runc/security/advisories/GHSA-xr7r-f8xq-vfvv\n2. https://github.com/opencontainers/runc/commit/02120488a4c0fc487d1ed2867e901eeed7ce8ecf\n3. https://github.com/opencontainers/runc/releases/tag/v1.1.12\n4. http://www.openwall.com/lists/oss-security/2024/02/01/1\n5. http://www.openwall.com/lists/oss-security/2024/02/02/3\n6. http://packetstormsecurity.com/files/176993/runc-1.1.11-File-Descriptor-Leak-Privilege-Escalation.html\n7. https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SYMO3BANINS6RGFQFKPRG4FIOJ7GWYTL/\n8. https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/2NLXNE23Q5ESQUAI22Z7A63JX2WMPJ2J/\n9. https://lists.debian.org/debian-lts-announce/2024/02/msg00005.html", "creation_timestamp": "2025-05-15T16:35:37.000000Z"}