Sylabs Singularity through 3.6.2 has Insecure Permissions on temporary directories used in explicit and implicit container build operations, a different vulnerability than CVE-2020-25039.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HOpensuse Leap
OSOpensuse15.115.2Sylabs Singularity
APPSylabs≤ 3.6.2
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
Container
CWE
References
Related vulnerabilities
CVE-2025-32463CRITICAL9.3⚠ KEVPL ✓ten sam produkt
Sudo: eskalacja uprawnień do root poprzez opcję --chroot (CVE-2025-32463)
CVE-2020-16846CRITICAL9.8⚠ KEVten sam produkt
An issue was discovered in SaltStack Salt through 3002. Sending crafted web requests to the Salt API, with the...
CVE-2020-12641CRITICAL9.8⚠ KEVten sam produkt
rcube_image.php in Roundcube Webmail before 1.4.4 allows attackers to execute arbitrary code via shell metacha...
CVE-2020-11651CRITICAL9.8⚠ KEVten sam produkt
An issue was discovered in SaltStack Salt before 2019.2.4 and 3000 before 3000.2. The salt-master process Clea...
CVE-2020-1938CRITICAL9.8⚠ KEVten sam produkt
When using the Apache JServ Protocol (AJP), care must be taken when trusting incoming connections to Apache To...