opencontainers runc Vulnerabilities: CVEs, CISA KEV & Security Advisories

Severity and exploitation

How the CVSS severity of opencontainers runc's CVEs breaks down, plus how many are exploited in the wild or have public exploit code.

Critical0

High5

Medium4

Low1

4 additional CVEs have no CVSS severity score.

In CISA’s Known Exploited Vulnerabilities catalog

None of opencontainers runc's CVEs are currently listed in CISA's KEV catalog.

Public exploits

One of opencontainers runc's CVEs has a known public exploit available.

Affected versions and CVEs

Browse every opencontainers runc version named in a CVE, then pick one to see only the CVEs that affect it.

Specific versions

v1.0.0-rc9312 CVEs
v1.0.0-rc9412 CVEs
v0.0.111 CVEs
v0.0.211 CVEs
v0.0.311 CVEs
v0.0.411 CVEs
v0.0.511 CVEs
v0.0.611 CVEs
v0.0.711 CVEs
v0.0.811 CVEs
v0.0.911 CVEs
v0.1.011 CVEs
v0.1.111 CVEs
v1.0.011 CVEs
v1.0.0-rc1011 CVEs
v1.0.0-rc311 CVEs
v1.0.0-rc411 CVEs
v1.0.0-rc511 CVEs
v1.0.0-rc611 CVEs
v1.0.0-rc711 CVEs
v1.0.0-rc811 CVEs
v1.0.0-rc911 CVEs
v1.0.0-rc9011 CVEs
v1.0.0-rc9111 CVEs
v1.0.0-rc9211 CVEs
v1.0.0-rc9511 CVEs
v1.0.0-rc110 CVEs
v1.0.0-rc210 CVEs
v1.1.08 CVEs
v1.1.0-rc.18 CVEs
v1.1.16 CVEs
v1.1.25 CVEs
v1.1.35 CVEs
v1.1.45 CVEs
v1.0.13 CVEs
v1.0.23 CVEs
v1.2.0-rc.13 CVEs
v1.2.0-rc.23 CVEs
v1.3.03 CVEs
v1.3.13 CVEs
v1.3.23 CVEs
>= 1.3.0-rc.1, < 1.3.32 CVEs
v1.1.102 CVEs
v1.1.112 CVEs
v1.1.52 CVEs
v1.1.62 CVEs
v1.1.72 CVEs
v1.1.82 CVEs
v1.1.92 CVEs
v1.2.02 CVEs
v1.2.0-rc.32 CVEs
v1.2.12 CVEs
v1.2.22 CVEs
v1.2.32 CVEs
v1.2.42 CVEs
v1.2.52 CVEs
v1.2.62 CVEs
v1.2.72 CVEs
v1.3.0-rc.12 CVEs
v1.3.0-rc.22 CVEs
v1.4.0-rc.12 CVEs
v1.4.0-rc.22 CVEs
< 1.1.141 CVE
< 1.2.81 CVE
<= 1.2.7, < 1.2.81 CVE
<= 1.3.2, < 1.3.31 CVE
<= 1.4.0-rc.2, < 1.4.0-rc.31 CVE
>= 1.0.0-rc3, < 1.2.81 CVE
>= 1.2.0-rc-1, < 1.2.0-rc.31 CVE
>= 1.4.0-rc.1, < 1.4.0-rc.31 CVE
>= 1.4.0-rc.1, <= 1.4.0-rc.31 CVE
v1.1.121 CVE
v1.1.131 CVE
v1.4.0-rc.31 CVE

Fixed in

d842d7719497cc3b774fd71620278ac9e17710e03 CVEs
f19387a6bec4944c770f7668ab51c4348d9c2f383 CVEs
eeb7e6024f9ee43876301b1d23c353384fa6dcdd2 CVEs
0ca91f44f1664da834bc61115a849b56d22f595f1 CVE
2c9f5602f0ba3d9da1c2596322dfc4e1568448901 CVE
3f925525b44d247e390e529e772a0dc0c0bc35571 CVE
435cc81be6b79cdec73b4002c0dae549b2f6ae6d1 CVE
44a0fcf685db051c80b8c269812bb177f5802c581 CVE
45471bc945571d57acef05e0795008d7f1d9baf51 CVE
4b37cd93f86e72feac866442988b549b5b7bf3e61 CVE
51d5e94601ceffbbd85688df1c928ecccbfa46851 CVE

Find a version

14 CVEs

Sort

runc: LSM labels can be bypassed with malicious config using dummy procfs files
CVE-2025-52881
Patch
CWE-363
High · CVSS 7.3
EPSS 0.0% (4th pct)2025-11-06
container escape due to /dev/console mount and related races
CVE-2025-52565
Patch
CWE-363
High · CVSS 8.4
EPSS 0.0% (8th pct)2025-11-06
runc container escape via "masked path" abuse due to mount race conditions
CVE-2025-31133
Patch
CWE-363
High · CVSS 7.3
EPSS 0.0% (6th pct)2025-11-06
runc can be confused to create empty files/directories on the host
CVE-2024-45310
Patch
CWE-61
Low · CVSS 3.6
EPSS 0.1% (35th pct)2024-09-03
High vulnerability · 2024-01-31
CVE-2024-21626
Public exploit
Patch
CWE-668
High · CVSS 8.6
EPSS 5.1% (90th pct)2024-01-31
Medium vulnerability · 2023-03-29
CVE-2023-25809
Patch
CWE-281
Medium · CVSS 5.0
EPSS 0.0% (11th pct)2023-03-29
AppArmor bypass with symlinked /proc in runc
CVE-2023-28642
Patch
CWE-281
Medium · CVSS 6.1
EPSS 0.0% (2th pct)2023-03-29
High vulnerability · 2023-03-03
CVE-2023-27561
Patch
CWE-706
High · CVSS 7.0
EPSS 0.1% (35th pct)2023-03-03
Incorrect Default Permissions in runc
CVE-2022-29162
Patch
CWE-276
Medium · CVSS 5.9
EPSS 0.1% (32th pct)2022-05-17
Overflow in netlink bytemsg length field allows attacker to override netlink-based container configuration
CVE-2021-43784
Patch
CWE-190
Medium · CVSS 6.0
EPSS 0.1% (30th pct)2021-12-06
Vulnerability · 2021-05-27
CVE-2021-30465
Patch
Unscored
EPSS 1.5% (81th pct)2021-05-27
Vulnerability · 2020-02-12
CVE-2019-19921
Patch
Unscored
EPSS 0.2% (41th pct)2020-02-12
Vulnerability · 2019-10-04
CVE-2019-17177
Unscored
EPSS 0.9% (76th pct)2019-10-04
Vulnerability · 2019-10-04
CVE-2019-17178
Unscored
EPSS 0.8% (75th pct)2019-10-04

Severity and exploitation

opencontainers runc Vulnerabilities

Overview

Severity and exploitation

Affected versions and CVEs

Specific versions

Fixed in

Common weakness types

Disclosure activity by year

Other opencontainers products

Frequently asked questions

How many CVEs does opencontainers runc have?

How many opencontainers runc CVEs are in CISA KEV?

Are there public exploits for opencontainers runc vulnerabilities?

Which versions of opencontainers runc are affected?

What are the most common weakness types in opencontainers runc CVEs?

What is the average severity of opencontainers runc CVEs?

References

Track opencontainers runc vulnerabilities