github.com/cri-o/cri-o vulnerabilities

Browse known CVEs and advisories by package and ecosystem. Severity tells you the worst case. What determines real risk is whether the vulnerable code actually runs in your applications.

Get a demo

Browse by ecosystem

npmPyPIMavenGoRubyGemsCargoNuGetComposerpubSwiftGitHub Actions
CVE-IDSeverityPackage summary
CVE-2025-4437Mediumgithub.com/cri-o/cri-o: CRI-O has Potential High Memory Consumption from File ReadCVE-2025-0750Mediumgithub.com/cri-o/cri-o: CRI-O Path Traversal vulnerabilityCVE-2024-8676Mediumgithub.com/cri-o/cri-o: CRI-O: Maliciously structured checkpoint file can gain arbitrary node accessCVE-2024-5154Highgithub.com/cri-o/cri-o: malicious container creates symlink "mtab" on the host ExternalCVE-2024-3154Highgithub.com/cri-o/cri-o: CRI-O vulnerable to an arbitrary systemd property injectionCVE-2023-6476Mediumgithub.com/cri-o/cri-o: CRI-O's pods can break out of resource confinement on cgroupv2CVE-2022-4318Mediumgithub.com/cri-o/cri-o: CRI-O vulnerable to /etc/passwd tampering resulting in Privilege EscalationCVE-2022-2995Highgithub.com/cri-o/cri-o: CRI-O incorrect handling of supplementary groups may lead to sensitive information disclosureCVE-2022-1708Highgithub.com/cri-o/cri-o: Node DOS by way of memory exhaustion through ExecSync request in CRI-OCVE-2022-27652Mediumgithub.com/cri-o/cri-o: Incorrect Default Permissions in CRI-OCVE-2022-0811Highgithub.com/cri-o/cri-o: Code Injection in CRI-OGHSA-W2J5-3RCX-VX7XMediumgithub.com/cri-o/cri-o: Sysctls applied to containers with host IPC or host network namespaces can affect the hostCVE-2022-0532Mediumgithub.com/cri-o/cri-o: Incorrect Permission Assignment for Critical Resource in CRI-O

Stop the waste.
Protect your environment with Kodem.