Fidencio

**Name of the Vulnerable Software and Affected Versions** Kata Containers versions 3.4.0 through 3.28.0 **Description** An oversight in the CopyFile policy and potentially the CopyFile handler allows untrusted hosts to write to arbitrary locations within the guest workload image. This flaw can be exploited to overwrite binaries inside the guest and exfiltrate data from containers, including those running inside Cloud Virtual Machines (CVMs). **Recommendations** Update to version 3.29.0.