CVEFinder.io

CVE-2023-0778

đŸ”ļ medium
🔍 Scan for this CVE
Summary

A Time-of-check Time-of-use (TOCTOU) flaw was found in podman. This issue may allow a malicious user to replace a normal file in a volume with a symlink while exporting the volume, allowing for access to arbitrary files on the host file system.

CVSS Score
6.8
Medium
EPSS Score
0.1
Exploit Probability
Published Date
2023-03-27
First Seen: 2026-01-05
📊 Relative Risk Intelligence

This CVE is Lower Risk - more severe than 48.8% of all 330,193 vulnerabilities in our database.

#169,083
Below average severity
Severity Percentile
đŸŽ¯ CISA SSVC Assessment Updated: Feb 24, 2025
🔍 Exploitation Status
None
No known exploits
⚙ī¸ Automatable
NO
Requires human interaction
đŸ’Ĩ Technical Impact
Total
Complete system compromise possible
SSVC data provided by CISA
Last Modified 2025-02-24
Source NVD 🔗
CVSS Vector 3.1 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N
CWE IDs (Weakness Types)
CWE-367

đŸ“Ļ Affected Products 3

Vendor Product Status Affected Versions
redhat enterprise_linux Affected
v8.0
redhat enterprise_linux Affected
v9.0
podman_project podman Affected
v-

🔗 References 1

https://bugzilla.redhat.com/show_bug.cgi?id=2168256
Issue Tracking Third Party Advisory

🔗 Related CVEs 6

CVE ID Severity CVSS EPSS Summary Published
CVE-2026-55686 đŸ”ļ medium 5.3 - Podman is a tool for managing OCI containers and pods. From 3.0.0 until 5.7.1, running a malicious container image where... 2026-06-26
CVE-2026-55653 đŸ”ļ medium 4.3 0.2 A flaw was found in OpenSSH. A malicious SSH server can exploit a double free vulnerability in the Diffie-Hellman Group ... 2026-06-23
CVE-2026-55654 ℹī¸ low 3.7 0.3 A flaw was found in OpenSSH. This vulnerability, a heap out-of-bounds read, occurs during the cleanup of GSSAPI (Generic... 2026-06-23
CVE-2026-55655 đŸ”ļ medium 5.0 0.1 A flaw was found in OpenSSH. A local unprivileged attacker on a Linux client host can hijack client-side X11 forwarding ... 2026-06-23
CVE-2026-11791 đŸ”ļ medium 5.0 0.3 A flaw was found in 389 Directory Server. During schema reload, the attr_syntax_swap_ht() function unconditionally frees... 2026-06-18
CVE-2026-1764 đŸ”ļ medium 5.6 0.2 A flaw was found in GNOME localsearch (previously known as tracker-miners) MP3 Extractor. When processing specially craf... 2026-06-16
These CVEs affect the same products