PT-2021-7849 · Podman+7 · Podman+7

Published

2021-11-12

Updated

2025-02-08

CVE-2021-4024

CVSS v3.1

6.5

Medium

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L

Name of the Vulnerable Software and Affected Versions podman (affected versions not specified)

Description A flaw was found in podman. The podman machine function spawns a gvproxy process on the host system. The gvproxy API is accessible on port 7777 on all IP addresses on the host. If that port is open on the host's firewall, an attacker can potentially use the gvproxy API to forward ports on the host to ports in the VM, making private services on the VM accessible to the network. This issue could be also used to interrupt the host's services by forwarding all ports to the VM.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Origin Validation Error

Information Disclosure

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-346CWE-200

Related Identifiers

ALSA-2022:7954

ALSA-2024:10289

ALT-PU-2021-3495

ALT-PU-2021-3549

ALT-PU-2022-1252

BDU:2023-03676

CESA-2024_10289

CVE-2021-4024

GHSA-3CF2-X423-X582

GO-2022-0281

INFSA-2024_10289

MGASA-2023-0213

OPENSUSE-SU-2022:23018-1

OPENSUSE-SU-2022_23018-1

OPENSUSE-SU-2023_0187-1

OPENSUSE-SU-2024:11674-1

RHSA-2022:7954

RHSA-2022_7954

RHSA-2024:10289

RHSA-2024_10289

RLSA-2024:10289

SUSE-SU-2022:23018-1

SUSE-SU-2023:0187-1

SUSE-SU-2023:0326-1

Affected Products

Alt Linux

Almalinux

Centos

Red Hat

Red Os

Rocky Linux

Suse

Podman

PT-2021-7849 · Podman+7 · Podman+7

CVE-2021-4024

Weakness Enumeration

Related Identifiers

Affected Products

References · 138