CNNVD-202509-720 Information

CNNVD ID

CNNVD-202509-720

Related CVE

CVE-2025-9566

• CNNVD Published: 2025-09-05

Description (Chinese)

Podman是Podman开源的一款用于在Linux系统上开发、管理和运行OCI容器的引擎。 Podman存在路径遍历漏洞，该漏洞源于kube play命令可能被用于覆盖主机文件，可能导致文件被覆盖。

Description (English)

Podman is a Podman open source for the development, management and operation of an engine for OCI containers on Linux. Podman has a loophole in the path, which stems from the fact that the kube play command may be used to cover the host file and may result in the document being overwritten.

Hazard Level

Medium

Vulnerability Type

路径遍历

Affected Vendor

Podman

Published

2025-09-05

Last Modified

2026-02-24

References

https://access.redhat.com/security/cve/CVE-2025-9566 https://bugzilla.redhat.com/show_bug.cgi?id=2393152

Patch

https://podman.io/