CVE-2022-1227 Podman has a privilege escalation flaw that allows an attacker to publish malicious images to public registries.

CVE-2022-1227 Podman has a privilege escalation flaw that allows an attacker to publish malicious images to public registries.

Podman is a tool for managing Kubernetes clusters on the local machine or a remote host. Podman is part of the Kubernetes project and is used to create and manage persistent volumes, monitor and manage pods, and orchestrate the deployment, scaling, and management of applications on a cluster. It is used by system administrators and software engineers to automate the management of Kubernetes clusters. The Podman project website reports that an average of 14.6 million Pods are created, scheduled, and scaled every day, with an average of 73.6 million Pods per month. This makes it an important target for adversaries. An adversary may seek to utilize vulnerabilities in Podman to launch a Pod takeover or a DoS attack.

Overview of Podman Vulnerabilities

The Podman project website reported that on December 4, 2017, an issue was detected with the cluster API where it allowed unauthorized read access to Kubernetes API objects.
Podman is a tool for managing Kubernetes clusters on the local machine or a remote host. Podman is part of the Kubernetes project and is used to create and manage persistent volumes, monitor and manage pods, and orchestrate the deployment, scaling, and management of applications on a cluster. It is used by system administrators and software engineers to automate the management of Kubernetes clusters. The Podman project website reports that an average of 14.6 million Pods are created, scheduled, and scaled every day, with an average of 73.6 million Pods per month. This makes it an important target for adversaries. An adversary may seek to utilize vulnerabilities in Podman to launch a Pod takeover or a DoS attack.

Install and Run Podman

First, clone the repository to GitHub. Next, install and run Podman. If you're on a remote host (e.g., in a VM) you'll need to ssh into the VM and run podman there as well.

References

Subscribe to CVE.news
Don’t miss out on the latest issues. Sign up now to get access to the library of members-only issues.
jamie@example.com
Subscribe