Insecure Permissions Vulnerability in Portainer by Portainer
CVE-2020-24263
8.8HIGH
What is CVE-2020-24263?
Portainer versions prior to 1.24.1 are susceptible to an insecure permissions vulnerability that allows non-administrative users to create containers with hazardous capabilities, such as SYS_MODULE. This flaw can potentially enable attackers to gain control over the Docker host, leading to significant security risks. It is crucial for users to upgrade to the latest version to mitigate this threat.
