Homepage

cockpit-podman vulnerabilities

Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the cockpit-podman package. This does not include vulnerabilities belonging to this package’s dependencies.

How to fix?

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Fix for free
VulnerabilityVulnerable Version
  • H
Improper Privilege Management

<0:84.1-1.module+el8.10.0+90449+0b7c8529
  • M
Information Exposure

<0:84.1-1.module+el8.10.0+90449+0b7c8529
  • M
Directory Traversal

<0:84.1-1.module+el8.10.0+90449+0b7c8529
  • H
Link Following

<0:84.1-1.module+el8.10.0+90429+ee702c5c
  • H
Directory Traversal

<0:84.1-1.module+el8.10.0+90429+ee702c5c
  • H
Improper Input Validation

<0:84.1-1.module+el8.10.0+90429+ee702c5c
  • H
CVE-2024-34155

<0:84.1-1.module+el8.10.0+90416+5b0f6a17
  • H
CVE-2024-34156

<0:84.1-1.module+el8.10.0+90416+5b0f6a17
  • H
CVE-2024-34158

<0:84.1-1.module+el8.10.0+90416+5b0f6a17
  • M
CVE-2024-24791

<0:84.1-1.module+el8.10.0+90412+9b361f34
  • M
CVE-2024-24788

<0:84.1-1.module+el8.10.0+90412+9b361f34
  • M
CVE-2024-24783

<0:84.1-1.module+el8.10.0+90412+9b361f34
  • H
Memory Leak

<0:84.1-1.module+el8.10.0+90384+a78ffc57
  • H
Improper Validation of Integrity Check Value

<0:84.1-1.module+el8.10.0+90384+a78ffc57
  • H
Information Exposure Through Log Files

<0:84.1-1.module+el8.10.0+90384+a78ffc57
  • H
CVE-2024-24789

<0:84.1-1.module+el8.10.0+90384+a78ffc57
  • H
CVE-2023-45290

<0:84.1-1.module+el8.10.0+90416+5b0f6a17
  • M
CVE-2024-24784

<0:84.1-1.module+el8.10.0+90412+9b361f34
  • H
CVE-2024-37298

<0:84.1-1.module+el8.10.0+90384+a78ffc57
  • M
CVE-2024-28176

<0:84.1-1.module+el8.10.0+90298+77a9814d
  • H
CVE-2024-24786

<0:84.1-1.module+el8.10.0+90298+77a9814d
  • M
CVE-2024-28180

<0:84.1-1.module+el8.10.0+90298+77a9814d
  • M
CVE-2021-33198

<0:84.1-1.module+el8.10.0+90449+0b7c8529
  • M
CVE-2023-45803

<0:84.1-1.module+el8.10.0+90298+77a9814d
  • M
Improper Validation of Integrity Check Value

<0:84.1-1.module+el8.10.0+90298+77a9814d
  • M
Improper Certificate Validation

<0:84.1-1.module+el8.10.0+90298+77a9814d
  • M
Open Redirect

<0:84.1-1.module+el8.10.0+90298+77a9814d
  • M
Improper Check for Unusual or Exceptional Conditions

<0:84.1-1.module+el8.10.0+90298+77a9814d
  • H
Link Following

<0:84.1-1.module+el8.10.0+90298+77a9814d
  • M
CVE-2023-39326

<0:46-1.module+el8.9.0+90165+ead7974e
  • M
Information Exposure

<0:84.1-1.module+el8.10.0+90298+77a9814d
  • H
Exposure of Resource to Wrong Sphere

<0:46-1.module+el8.9.0+90148+6046e3c3
  • M
Allocation of Resources Without Limits or Throttling

<0:84.1-1.module+el8.10.0+90298+77a9814d
  • M
Resource Exhaustion

<0:84.1-1.module+el8.10.0+90298+77a9814d
  • M
CVE-2023-39321

<0:84.1-1.module+el8.10.0+90298+77a9814d
  • H
HTTP Request Smuggling

<0:84.1-1.module+el8.10.0+90298+77a9814d
  • M
Allocation of Resources Without Limits or Throttling

<0:84.1-1.module+el8.10.0+90298+77a9814d
  • M
Cross-site Scripting (XSS)

<0:84.1-1.module+el8.10.0+90298+77a9814d
  • H
CVE-2022-41715

<0:84.1-1.module+el8.10.0+90298+77a9814d
  • M
Cross-site Scripting (XSS)

<0:84.1-1.module+el8.10.0+90298+77a9814d
  • M
Incorrect Authorization

<0:75-1.module+el8.9.0+90021+ce997450
  • M
Resource Exhaustion

<0:75-1.module+el8.9.0+90021+ce997450
  • M
Arbitrary Code Injection

<0:46-1.module+el8.9.0+90044+a34bc939
  • M
Resource Exhaustion

<0:46-1.module+el8.9.0+90044+a34bc939
  • M
Integer Overflow or Wraparound

<0:46-1.module+el8.9.0+90044+a34bc939
  • M
Interpretation Conflict

<0:46-1.module+el8.9.0+90086+8f2d6fb1
  • M
Resource Exhaustion

<0:75-1.module+el8.9.0+90021+ce997450
  • M
CVE-2022-41723

<0:75-1.module+el8.9.0+90021+ce997450
  • M
Cross-site Scripting (XSS)

<0:75-1.module+el8.9.0+90021+ce997450
  • M
Allocation of Resources Without Limits or Throttling

<0:75-1.module+el8.9.0+90021+ce997450
  • M
Arbitrary Code Injection

<0:75-1.module+el8.9.0+90021+ce997450
  • M
Allocation of Resources Without Limits or Throttling

<0:46-1.module+el8.9.0+90044+a34bc939
  • M
Arbitrary Code Injection

<0:75-1.module+el8.9.0+90021+ce997450
  • M
CVE-2023-24540

<0:75-1.module+el8.9.0+90021+ce997450
  • H
Use of Incorrectly-Resolved Name or Reference

<0:63.1-1.module+el8.8.0+21045+adcb6a64
  • H
Link Following

<0:46-1.module+el8.8.0+20984+ab6ce66c
  • H
Improper Preservation of Permissions

<0:63.1-1.module+el8.8.0+21045+adcb6a64
  • M
Time-of-check Time-of-use (TOCTOU)

<0:63.1-1.module+el8.8.0+21045+adcb6a64
  • M
Allocation of Resources Without Limits or Throttling

<0:46-1.module+el8.8.0+20984+ab6ce66c
  • M
Placement of User into Incorrect Group

<0:46-1.module+el8.8.0+20984+ab6ce66c
  • M
Race Condition

<0:53-1.module+el8.7.0+20873+328b8baa
  • L
Placement of User into Incorrect Group

<0:53-1.module+el8.7.0+20877+e0f9ac15
  • M
Incorrect Default Permissions

<0:46-1.module+el8.7.0+20872+81cbf159
  • M
Access of Resource Using Incompatible Type ('Type Confusion')

<0:53-1.module+el8.7.0+20873+328b8baa
  • M
CVE-2022-27191

<0:46-1.module+el8.7.0+20872+81cbf159
  • M
CVE-2022-27664

<0:46-1.module+el8.8.0+20984+ab6ce66c
  • M
CVE-2022-32189

<0:46-1.module+el8.8.0+20984+ab6ce66c
  • M
Allocation of Resources Without Limits or Throttling

<0:46-1.module+el8.7.0+20872+81cbf159
  • M
Uncontrolled Recursion

<0:63.1-1.module+el8.8.0+21045+adcb6a64
  • M
Uncontrolled Recursion

<0:46-1.module+el8.8.0+20984+ab6ce66c
  • M
CVE-2022-32148

<0:63.1-1.module+el8.8.0+21045+adcb6a64
  • M
Uncontrolled Recursion

<0:63.1-1.module+el8.8.0+21045+adcb6a64
  • M
Uncontrolled Recursion

<0:46-1.module+el8.8.0+20984+ab6ce66c
  • M
HTTP Request Smuggling

<0:46-1.module+el8.8.0+20984+ab6ce66c
  • M
Uncontrolled Recursion

<0:46-1.module+el8.8.0+20984+ab6ce66c
  • M
Uncontrolled Recursion

<0:46-1.module+el8.8.0+20984+ab6ce66c
  • M
Uncontrolled Recursion

<0:46-1.module+el8.8.0+20984+ab6ce66c
  • M
Use of Insufficiently Random Values

<0:63.1-1.module+el8.8.0+21045+adcb6a64
  • M
Incorrect Default Permissions

<0:29-2.module+el8.6.0+20652+6ea35e6f
  • M
Allocation of Resources Without Limits or Throttling

<0:29-2.module+el8.7.0+20785+0180d035
  • H
Improper Privilege Management

<0:43-1.module+el8.6.0+20656+53f7e955
  • H
Incorrect Default Permissions

<0:43-1.module+el8.6.0+20656+53f7e955
  • H
Incorrect Default Permissions

<0:43-1.module+el8.6.0+20656+53f7e955
  • M
Improper Cross-boundary Removal of Sensitive Data

<0:29-2.module+el8.5.0+20341+152f6d53
  • M
Improper Locking

<0:33-1.module+el8.5.0+20416+d687fed7
  • M
Origin Validation Error

<0:29-2.module+el8.4.0+20157+b6591bfb
  • M
NULL Pointer Dereference

<0:29-2.module+el8.4.0+20157+b6591bfb
  • H
Race Condition

<0:11-1.module+el8.4.0+20172+38c78bba
  • H
Incorrect Authorization

<0:11-1.module+el8.3.0+9670+b9fad87d
  • M
Improper Cross-boundary Removal of Sensitive Data

<0:27.1-3.module+el8.3.1+9659+c1901784
  • M
CVE-2020-10749

<0:18.1-2.module+el8.3.0+7866+f387f528
  • M
Out-of-bounds Read

<0:18.1-2.module+el8.3.0+7866+f387f528
  • M
Loop with Unreachable Exit Condition ('Infinite Loop')

<0:18.1-2.module+el8.3.0+7866+f387f528
  • M
Use After Free

<0:17-1.module+el8.2.1+7658+86e51d52
  • H
Directory Traversal

<0:11-1.module+el8.2.0+7618+3a616245
  • M
Use of Incorrectly-Resolved Name or Reference

<0:12-1.module+el8.2.0+5584+b2b2d3fb
  • M
Files or Directories Accessible to External Parties

<0:12-1.module+el8.2.0+5584+b2b2d3fb
  • M
Resource Exhaustion

<0:12-1.module+el8.2.0+5584+b2b2d3fb
  • H
Buffer Overflow

<0:11-1.module+el8.1.1+5502+fbec5cc6
  • H
Out-of-bounds Write

<0:11-1.module+el8.1.1+5502+fbec5cc6
  • H
Incorrect Authorization

<0:4-1.module+el8.1.0+5440+994fc847
  • H
Improper Handling of Exceptional Conditions

<0:4-1.module+el8.1.0+5440+994fc847
  • H
Insufficiently Protected Credentials

<0:4-1.module+el8.1.0+5440+994fc847
  • H
Allocation of Resources Without Limits or Throttling

<0:4-1.module+el8.1.0+5440+994fc847
  • H
Resource Exhaustion

<0:4-1.module+el8.1.0+5440+994fc847