Homepage

podman-plugins vulnerabilities

Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the podman-plugins package. This does not include vulnerabilities belonging to this package’s dependencies.

How to fix?

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Fix for free
VulnerabilityVulnerable Version
  • H
CVE-2025-22869

<4:4.9.4-20.0.1.module+el8.10.0+90541+332b2aa7
  • H
Improper Privilege Management

<4:4.9.4-19.0.1.module+el8.10.0+90509+b5e1e789
  • M
Directory Traversal

<4:4.9.4-18.0.1.module+el8.10.0+90449+0b7c8529
  • M
Information Exposure

<4:4.9.4-18.0.1.module+el8.10.0+90449+0b7c8529
  • H
Directory Traversal

<4:4.9.4-15.0.1.module+el8.10.0+90429+ee702c5c
  • H
Improper Input Validation

<4:4.9.4-15.0.1.module+el8.10.0+90429+ee702c5c
  • H
Link Following

<4:4.9.4-15.0.1.module+el8.10.0+90429+ee702c5c
  • H
CVE-2024-34155

<4:4.9.4-13.module+el8.10.0+90416+5b0f6a17
  • H
CVE-2024-34156

<4:4.9.4-13.module+el8.10.0+90416+5b0f6a17
  • H
CVE-2024-34158

<4:4.9.4-13.module+el8.10.0+90416+5b0f6a17
  • M
CVE-2024-24791

<4:4.9.4-13.0.1.module+el8.10.0+90412+9b361f34
  • M
CVE-2024-24788

<4:4.9.4-13.0.1.module+el8.10.0+90412+9b361f34
  • M
CVE-2024-24783

<4:4.9.4-13.0.1.module+el8.10.0+90412+9b361f34
  • H
Memory Leak

<4:4.9.4-12.0.2.module+el8.10.0+90384+a78ffc57
  • H
CVE-2024-24789

<4:4.9.4-12.0.2.module+el8.10.0+90384+a78ffc57
  • H
Improper Validation of Integrity Check Value

<4:4.9.4-12.0.2.module+el8.10.0+90384+a78ffc57
  • H
CVE-2023-45290

<4:4.9.4-13.module+el8.10.0+90416+5b0f6a17
  • H
Information Exposure Through Log Files

<4:4.9.4-12.0.2.module+el8.10.0+90384+a78ffc57
  • H
CVE-2024-37298

<4:4.9.4-12.0.2.module+el8.10.0+90384+a78ffc57
  • M
CVE-2024-24784

<4:4.9.4-13.0.1.module+el8.10.0+90412+9b361f34
  • M
CVE-2024-28176

<4:4.9.4-3.0.1.module+el8.10.0+90352+16362864
  • H
CVE-2024-24786

<4:4.9.4-1.module+el8.10.0+90337+0d7b6e74
  • M
CVE-2024-28180

<4:4.9.4-3.0.1.module+el8.10.0+90352+16362864
  • M
Improper Validation of Integrity Check Value

<3:4.9.4-0.1.module+el8.10.0+90298+77a9814d
  • M
Open Redirect

<3:4.9.4-0.1.module+el8.10.0+90298+77a9814d
  • M
CVE-2021-33198

<4:4.9.4-18.0.1.module+el8.10.0+90449+0b7c8529
  • M
CVE-2023-45803

<3:4.9.4-0.1.module+el8.10.0+90298+77a9814d
  • M
Improper Check for Unusual or Exceptional Conditions

<3:4.9.4-0.1.module+el8.10.0+90298+77a9814d
  • M
Improper Certificate Validation

<3:4.9.4-0.1.module+el8.10.0+90298+77a9814d
  • H
Link Following

<4:4.9.4-1.module+el8.10.0+90337+0d7b6e74
  • M
CVE-2023-39326

<2:4.0.2-26.module+el8.9.0+90165+ead7974e
  • M
Information Exposure

<3:4.9.4-0.1.module+el8.10.0+90298+77a9814d
  • H
Exposure of Resource to Wrong Sphere

<2:4.0.2-25.0.1.module+el8.9.0+90148+6046e3c3
  • M
CVE-2023-39321

<3:4.9.4-0.1.module+el8.10.0+90298+77a9814d
  • M
Cross-site Scripting (XSS)

<3:4.9.4-0.1.module+el8.10.0+90298+77a9814d
  • M
Allocation of Resources Without Limits or Throttling

<3:4.9.4-0.1.module+el8.10.0+90298+77a9814d
  • M
Resource Exhaustion

<3:4.9.4-0.1.module+el8.10.0+90298+77a9814d
  • H
CVE-2022-41715

<4:4.9.4-1.module+el8.10.0+90337+0d7b6e74
  • H
HTTP Request Smuggling

<4:4.9.4-1.module+el8.10.0+90337+0d7b6e74
  • M
Cross-site Scripting (XSS)

<3:4.9.4-0.1.module+el8.10.0+90298+77a9814d
  • M
Allocation of Resources Without Limits or Throttling

<3:4.9.4-0.1.module+el8.10.0+90298+77a9814d
  • M
Resource Exhaustion

<3:4.6.1-4.module+el8.9.0+90021+ce997450
  • M
Incorrect Authorization

<3:4.6.1-4.module+el8.9.0+90021+ce997450
  • M
Interpretation Conflict

<2:4.0.2-24.module+el8.9.0+90086+8f2d6fb1
  • M
Allocation of Resources Without Limits or Throttling

<3:4.6.1-4.module+el8.9.0+90021+ce997450
  • M
Resource Exhaustion

<3:4.6.1-4.module+el8.9.0+90021+ce997450
  • M
Arbitrary Code Injection

<3:4.6.1-4.module+el8.9.0+90021+ce997450
  • M
Resource Exhaustion

<2:4.0.2-24.module+el8.9.0+90044+a34bc939
  • M
Allocation of Resources Without Limits or Throttling

<2:4.0.2-24.module+el8.9.0+90044+a34bc939
  • M
Arbitrary Code Injection

<3:4.6.1-4.module+el8.9.0+90021+ce997450
  • M
CVE-2023-24540

<3:4.6.1-4.module+el8.9.0+90021+ce997450
  • M
Arbitrary Code Injection

<3:4.6.1-4.module+el8.9.0+90021+ce997450
  • M
Integer Overflow or Wraparound

<3:4.6.1-4.module+el8.9.0+90021+ce997450
  • M
Cross-site Scripting (XSS)

<3:4.6.1-4.module+el8.9.0+90021+ce997450
  • M
CVE-2022-41723

<3:4.6.1-4.module+el8.9.0+90021+ce997450
  • H
Use of Incorrectly-Resolved Name or Reference

<3:4.4.1-12.module+el8.8.0+21056+d98a0860
  • H
Link Following

<2:4.0.2-20.module+el8.8.0+20984+ab6ce66c
  • H
Improper Preservation of Permissions

<2:4.0.2-20.module+el8.8.0+20984+ab6ce66c
  • M
Time-of-check Time-of-use (TOCTOU)

<2:4.0.2-20.module+el8.8.0+20984+ab6ce66c
  • M
Allocation of Resources Without Limits or Throttling

<2:4.0.2-20.module+el8.8.0+20984+ab6ce66c
  • M
Placement of User into Incorrect Group

<2:4.0.2-20.module+el8.8.0+20984+ab6ce66c
  • M
Race Condition

<3:4.2.0-1.module+el8.7.0+20873+328b8baa
  • L
Placement of User into Incorrect Group

<3:4.2.0-4.module+el8.7.0+20877+e0f9ac15
  • M
Incorrect Default Permissions

<3:4.2.0-1.module+el8.7.0+20873+328b8baa
  • M
Access of Resource Using Incompatible Type ('Type Confusion')

<3:4.2.0-1.module+el8.7.0+20873+328b8baa
  • M
CVE-2022-27191

<2:4.0.2-8.module+el8.7.0+20872+81cbf159
  • M
CVE-2022-27664

<2:4.0.2-20.module+el8.8.0+20984+ab6ce66c
  • M
CVE-2022-32189

<2:4.0.2-20.module+el8.8.0+20984+ab6ce66c
  • M
Allocation of Resources Without Limits or Throttling

<0:3.0.1-13.module+el8.7.0+20785+0180d035
  • M
Uncontrolled Recursion

<2:4.0.2-20.module+el8.8.0+20984+ab6ce66c
  • M
Uncontrolled Recursion

<2:4.0.2-20.module+el8.8.0+20984+ab6ce66c
  • M
CVE-2022-32148

<3:4.4.1-8.module+el8.8.0+21045+adcb6a64
  • M
Uncontrolled Recursion

<3:4.4.1-8.module+el8.8.0+21045+adcb6a64
  • M
Uncontrolled Recursion

<2:4.0.2-20.module+el8.8.0+20984+ab6ce66c
  • M
HTTP Request Smuggling

<2:4.0.2-20.module+el8.8.0+20984+ab6ce66c
  • M
Uncontrolled Recursion

<3:4.4.1-8.module+el8.8.0+21045+adcb6a64
  • M
Uncontrolled Recursion

<2:4.0.2-20.module+el8.8.0+20984+ab6ce66c
  • M
Uncontrolled Recursion

<2:4.0.2-20.module+el8.8.0+20984+ab6ce66c
  • M
Use of Insufficiently Random Values

<3:4.4.1-8.module+el8.8.0+21045+adcb6a64
  • M
Incorrect Default Permissions

<0:3.0.1-8.module+el8.6.0+20652+6ea35e6f
  • M
Allocation of Resources Without Limits or Throttling

<0:3.0.1-13.module+el8.7.0+20785+0180d035
  • H
Improper Privilege Management

<2:4.0.2-6.module+el8.6.0+20656+53f7e955
  • H
Incorrect Default Permissions

<2:4.0.2-6.module+el8.6.0+20656+53f7e955
  • H
Incorrect Default Permissions

<2:4.0.2-6.module+el8.6.0+20656+53f7e955
  • M
Improper Cross-boundary Removal of Sensitive Data

<0:3.0.1-6.0.1.module+el8.5.0+20408+23b8328e
  • M
Improper Locking

<0:3.3.1-9.0.1.module+el8.5.0+20416+d687fed7
  • M
Origin Validation Error

<0:3.0.1-6.0.1.module+el8.4.0+20157+b6591bfb
  • M
NULL Pointer Dereference

<0:3.0.1-6.0.1.module+el8.4.0+20157+b6591bfb
  • H
Race Condition

<0:3.0.1-7.0.1.module+el8.4.0+20195+0a4a4953
  • M
Improper Cross-boundary Removal of Sensitive Data

<0:2.2.1-7.0.1.module+el8.3.1+9659+c1901784