整理容器逃逸相关的漏洞和exploits.
| Name | Category | PoC | Writeup |
|---|---|---|---|
| SYS_MODULE Abuse | Docker | ✅ | Deprecated(temporarily) |
| SYS_ADMIN Abuse | Docker | ✅ | ✅ |
| MKNOD Abuse | Docker | ||
| Host Network Sniffing | Docker | ||
| UEVENT_HELPER Abuse | Docker | ||
| privileged-container | Docker | ✅ | ✅ |
| mount-docker-sock | Docker | ✅ | ✅ |
| mount-host-etc | Docker | ✅ | ✅ |
| Process Injection | Docker | ✅ | Deprecated |
| mount-var-log-k8s | K8s | ✅ | |
| mount-host-procfs-k8s | K8s | ✅ | |
| DAC_OVERRIDE | Docker | ✅ | ✅ |
| Name | Category | PoC | Checked |
|---|---|---|---|
| CVE-2016-5195 | Kernel | ✅ | Failed due to unsupported vDSO version |
| CVE-2016-9962 | Docker | ✅ | Deprecated |
| CVE-2017-1000112 | Kernel | ✅ | Failed due to no bypass available |
| CVE-2017-1002101 | K8s | ✅ | |
| CVE-2017-7308 | Kernel | ✅ | Failed due to no matched kernel4.0.0-34 |
| CVE-2018-1002100 | K8s | ||
| CVE-2018-15664 | Docker | ✅ | Failed due to docker engine is too old |
| CVE-2018-18955 | Kernel | ✅ | writeup escalation only |
| CVE-2019-1002101 | K8s | Failed due to no matched kernel4.0.0-34 | |
| CVE-2019-11246 | K8s | ||
| CVE-2019-11249 | K8s | ||
| CVE-2019-11251 | K8s | ||
| CVE-2019-14271 | Docker | ✅ | writeup |
| CVE-2019-16884 | Docker | ||
| CVE-2019-5736 | Docker | ✅ | writeup |
| CVE-2020-14386 | Kernel | ||
| CVE-2020-15257 | Docker | ✅ | Failed due to docker engine is too old |
| CVE-2020-27151 | Kata | ||
| CVE-2020-8555 | K8s | ||
| CVE-2021-22555 | Kernel | ✅ | Failed - poc didn't work |
| CVE-2021-25741 | K8s | ||
| CVE-2021-30465 | K8s | ||
| CVE-2022-0185 | Kernel | ✅ | writeup escalation only |
| CVE-2022-0492 | Docker | ✅ | writeup |
| CVE-2022-0811 | K8s | ||
| CVE-2022-0847 | Docker | ✅ | writeupescalation only |
| CVE-2022-1227 | Podman | ✅ | writeup |