pkg:Go/github.com/containerd/containerd

28 total CVEsHIGH6MEDIUM21

✅ Check your installed version

All known vulnerabilities

  • HIGH8.0CVE-2021-43816Unprivileged pod using `hostPath` can side-step active LSM when it is SELinux in github.com/containerd/containerd
    >= 1.5.0, < 1.5.9
  • HIGH8.0CVE-2021-43816Unprivileged pod using `hostPath` can side-step active LSM when it is SELinux in github.com/containerd/containerd
    >= 1.5.0, < 1.5.9
  • HIGH7.5CVE-2022-23648containerd - security update
    from 0, < 1.4.13
  • HIGH7.5CVE-2022-23648containerd - security update
    from 0, < 1.4.13, >= 1.5.0, < 1.5.10, >= 1.6.0, < 1.6.1
  • HIGH7.3CVE-2024-25621containerd - security update
    from 0, < 1.7.29
  • HIGH7.3CVE-2024-25621containerd - security update
    from 0, < 1.7.29
  • MEDIUM6.3CVE-2021-21334containerd environment variable leak
    >= 1.4.0, < 1.4.4
  • MEDIUM6.1CVE-2020-15157containerd v1.2.x can be coerced into leaking credentials during image pull
    from 0, < 1.2.14
  • MEDIUM6.1CVE-2020-15157containerd v1.2.x can be coerced into leaking credentials during image pull
    from 0, < 1.2.14
  • MEDIUM5.9CVE-2021-41103Insufficiently restricted permissions on plugin directories
    from 0, < 1.4.11, >= 1.5.0, < 1.5.7
  • MEDIUM5.9CVE-2021-41103Insufficiently restricted permissions on plugin directories
    from 0, < 1.4.11
  • MEDIUM5.7CVE-2022-23471containerd CRI stream server vulnerable to host memory exhaustion via terminal in github.com/containerd/containerd
    from 0, < 1.5.16, >= 1.6.0, < 1.6.12
  • MEDIUM5.7CVE-2022-23471containerd CRI stream server vulnerable to host memory exhaustion via terminal in github.com/containerd/containerd
    from 0, < 1.5.16
  • MEDIUM5.5CVE-2025-64329containerd CRI server: Host memory exhaustion through Attach goroutine leak in github.com/containerd/containerd
    from 0, < 1.7.29
  • MEDIUM5.5CVE-2025-64329containerd CRI server: Host memory exhaustion through Attach goroutine leak in github.com/containerd/containerd
    from 0, < 1.7.29
  • MEDIUM5.5CVE-2023-25153Memory exhaustion via OCI image importer in github.com/containerd/containerd
    from 0, < 1.5.18, >= 1.6.0, < 1.6.18
  • MEDIUM5.5CVE-2023-25153Memory exhaustion via OCI image importer in github.com/containerd/containerd
    from 0, < 1.5.18
  • MEDIUM5.5CVE-2022-31030containerd CRI plugin: Host memory exhaustion through ExecSync in github.com/containerd/containerd
    from 0, < 1.5.13
  • MEDIUM5.5CVE-2022-31030containerd CRI plugin: Host memory exhaustion through ExecSync in github.com/containerd/containerd
    from 0, < 1.5.13, >= 1.6.0, < 1.6.6
  • MEDIUM5.3CVE-2023-25173Privilege escalation via supplementary groups in github.com/containerd/containerd
    from 0, < 1.5.18
  • MEDIUM5.3CVE-2023-25173Privilege escalation via supplementary groups in github.com/containerd/containerd
    from 0, < 1.5.18, >= 1.6.0, < 1.6.18
  • MEDIUM5.2CVE-2020-15257containerd-shim API Exposed to Host Network Containers in github.com/containerd/containerd
    from 0, < 1.3.9
  • MEDIUM5.2CVE-2020-15257containerd-shim API Exposed to Host Network Containers in github.com/containerd/containerd
    from 0, < 1.3.9, >= 1.4.0, < 1.4.3
  • MEDIUM5.0CVE-2021-32760Archive package allows chmod of file outside of unpack target directory in github.com/containerd/containerd
    from 0, < 1.4.8, >= 1.5.0, < 1.5.4
  • MEDIUM5.0CVE-2021-32760Archive package allows chmod of file outside of unpack target directory in github.com/containerd/containerd
    from 0, < 1.4.8
  • MEDIUM4.6CVE-2024-40635containerd - security update
    from 0, < 1.6.38, >= 1.7.0-beta.0, < 1.7.27
  • MEDIUM4.6CVE-2024-40635containerd - security update
    >= 1.7.0-beta.0, < 1.7.27
  • CVE-2026-46680containerd user ID handling bypass allows runAsNonRoot evasion
    >= 1.7.27, < 1.7.32