Thecyberexpress
Critical runC Vulnerabilities Enable Container Escape and Host Compromise
First seen 23 Nov 2025, 03:35 UTC
•



•83% similarity
•37.1
Share:
Export
Ask AI about this cluster
Analyzing cluster data...
Referenced clusters:
Something went wrong. Please try again.
Cluster AI
Ask questions about this threat cluster with AI-powered analysis.
Get Researcher $29.99/moArticle Content
Browse articles
Security researchers disclosed three critical vulnerabilities in runC, the container runtime used by Docker and Kubernetes, allowing attackers to escape container isolation and gain root access to host systems. The vulnerabilities, tracked as CVE-2025-31133, CVE-2025-52565, and CVE-2025-52881, exploit weaknesses in handling masked paths and bind mounts. These flaws affect nearly all versions of runC and pose significant risks to cloud-native environments.
ThreatCluster AI