CVE-2020-1726 : A flaw was discovered in Podman where it incorrectly allows containers when crea

A flaw was discovered in Podman where it incorrectly allows containers when created to overwrite existing files in volumes, even if they are mounted as read-only. When a user runs a malicious container or a container based on a malicious image with an attached volume that is used for the first time, it is possible to trigger the flaw and overwrite files in the volume.This issue was introduced in version 1.6.0.

Published 2020-02-11 20:15:12

Updated 2023-02-12 23:40:34

Source Red Hat, Inc.

View at NVD, CVE.org

Products affected by CVE-2020-1726

Redhat » Enterprise Linux » Version: 8.0
cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*
Matching versions
Redhat » Openshift Container Platform » Version: 4.3
cpe:2.3:a:redhat:openshift_container_platform:4.3:*:*:*:*:*:*:*
Matching versions
Libpod Project » Libpod » Version: 1.6.0
cpe:2.3:a:libpod_project:libpod:1.6.0:-:*:*:*:*:*:*
Matching versions

Threat overview for CVE-2020-1726

Top countries where our scanners detected CVE-2020-1726

Top open port discovered on systems with this issue 53

IPs affected by CVE-2020-1726 61,437

Threat actors abusing to this issue? Yes

Find out if you^* are affected by CVE-2020-1726!

^*Directly or indirectly through your vendors, service providers and 3rd parties. Powered by attack surface intelligence from SecurityScorecard.

Exploit prediction scoring system (EPSS) score for CVE-2020-1726

EPSS FAQ

0.16%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 38 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2020-1726

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
5.8	MEDIUM	AV:N/AC:M/Au:N/C:N/I:P/A:P	8.6	4.9	NIST
Access Vector: Network Access Complexity: Medium Authentication: None Confidentiality Impact: None Integrity Impact: Partial Availability Impact: Partial
5.9	MEDIUM	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N	2.2	3.6	NIST
Attack Vector: Network Attack Complexity: High Privileges Required: None User Interaction: None Scope: Unchanged Confidentiality: None Integrity: High Availability: None
5.9	MEDIUM	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N	2.2	3.6	Red Hat, Inc.
Attack Vector: Network Attack Complexity: High Privileges Required: None User Interaction: None Scope: Unchanged Confidentiality: None Integrity: High Availability: None

CWE ids for CVE-2020-1726

CWE-552 Files or Directories Accessible to External Parties

The product makes files or directories accessible to unauthorized actors, even though they should not be.
Assigned by:
- nvd@nist.gov (Secondary)
- secalert@redhat.com (Primary)

References for CVE-2020-1726

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-1726

1801152 – (CVE-2020-1726) CVE-2020-1726 podman: incorrectly allows existing files in volumes to be overwritten by a container when it is created
Issue Tracking;Patch;Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2020-09/msg00103.html

[security-announce] openSUSE-SU-2020:1559-1: moderate: Security update f
http://lists.opensuse.org/opensuse-security-announce/2020-09/msg00097.html

[security-announce] openSUSE-SU-2020:1552-1: moderate: Security update f
https://access.redhat.com/errata/RHSA-2020:0680

RHSA-2020:0680 - Security Advisory - Red Hat Customer Portal