Symlink Following Vulnerability in AliyunContainerService Pouch
CVE-2024-41228
Currently unrated
What is CVE-2024-41228?
A symlink following vulnerability exists within the pouch cp function of AliyunContainerService Pouch version 1.3.1, which could allow attackers to escalate privileges. This flaw may enable malicious actors to write arbitrary files, potentially leading to further exploitation or unauthorized access within the affected environment. Organizations utilizing this version of the AliyunContainerService Pouch are advised to review their security practices and implement patches as necessary.