Known Vulnerabilities for Singularity by Sylabs
Listed below are 10 of the newest known vulnerabilities associated with "Singularity" by "Sylabs".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2023-30549 json | Apptainer is an open source container platform for Linux. There is an ext4 use-after-free flaw that is exploitable through ve... | 7.8 - HIGH | 2023-04-25 | 2023-11-25 |
| CVE-2021-33622 json | Sylabs Singularity 3.5.x and 3.6.x, and SingularityPRO before 3.5-8, has an Incorrect Check of a Function's Return Value. | 9.8 - CRITICAL | 2021-06-15 | 2021-06-21 |
| CVE-2021-33027 json | Sylabs Singularity Enterprise through 1.6.2 has Insufficient Entropy in a nonce. | 9.8 - CRITICAL | 2021-07-19 | 2021-07-28 |
| CVE-2021-32635 json | Singularity is an open source container platform. In verions 3.7.2 and 3.7.3, Dde to incorrect use of a default URL, `singula... | 6.3 - MEDIUM | 2021-05-28 | 2022-04-22 |
| CVE-2021-29136 json | Open Container Initiative umoci before 0.4.7 allows attackers to overwrite arbitrary host paths via a crafted image that caus... | 5.5 - MEDIUM | 2021-04-06 | 2021-05-20 |
| CVE-2020-25040 json | Sylabs Singularity through 3.6.2 has Insecure Permissions on temporary directories used in explicit and implicit container bu... | 8.8 - HIGH | 2020-09-16 | 2021-07-21 |
| CVE-2020-25039 json | Sylabs Singularity 3.2.0 through 3.6.2 has Insecure Permissions on temporary directories used in fakeroot or user namespace c... | 8.1 - HIGH | 2020-09-16 | 2021-07-21 |
| CVE-2020-15229 json | Singularity (an open source container platform) from version 3.1.1 through 3.6.3 has a vulnerability. Due to insecure handlin... | 9.3 - CRITICAL | 2020-10-14 | 2022-11-16 |
| CVE-2020-13847 json | Sylabs Singularity 3.0 through 3.5 lacks support for an Integrity Check. Singularity's sign and verify commands do not sign m... | 7.5 - HIGH | 2020-07-14 | 2023-01-20 |
| CVE-2020-13846 json | Sylabs Singularity 3.5.0 through 3.5.3 fails to report an error in a Status Code. | 7.5 - HIGH | 2020-07-14 | 2023-01-20 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Sylabs | Singularity | 3.6.3 | |||
| Application | Sylabs | Singularity | 3.6.2 | |||
| Application | Sylabs | Singularity | 3.6.1 | |||
| Application | Sylabs | Singularity | 3.6.0 | |||
| Application | Sylabs | Singularity | 3.6.0 | |||
| Application | Sylabs | Singularity | 3.6.0 | |||
| Application | Sylabs | Singularity | 3.6.0 | |||
| Application | Sylabs | Singularity | 3.6.0 | |||
| Application | Sylabs | Singularity | 3.6.0 | |||
| Application | Sylabs | Singularity | 3.5.3 | |||
| Application | Sylabs | Singularity | 3.5.3 | |||
| Application | Sylabs | Singularity | 3.5.3 | |||
| Application | Sylabs | Singularity | 3.5.2 | |||
| Application | Sylabs | Singularity | 3.5.1 | |||
| Application | Sylabs | Singularity | 3.5.1 | |||
| Application | Sylabs | Singularity | 3.5.1 | |||
| Application | Sylabs | Singularity | 3.5.0 | |||
| Application | Sylabs | Singularity | 3.5.0 | |||
| Application | Sylabs | Singularity | 3.5.0 | |||
| Application | Sylabs | Singularity | 3.4.2 |