Impact
This vulnerability originates from inadequate validation of Docker image LABEL directives within containerd’s CRI plugin. Labels passed from the image configuration are forwarded to containers verbatim, enabling an attacker to insert malicious payloads such as a `binary://` logger reference that the restart‑monitor executes as a host command. The result is remote code execution on the host, granting full control over the node and endangering the entire cluster.
Affected Systems
The product at risk is containerd. Versions prior to 1.7.33, 2.3.2, 2.2.5, 2.1.9, and 2.0.10 contain the flaw. Any environment running containerd v1.7.32 or earlier, v2.3.1 or earlier, v2.2.4 or earlier, v2.1.8 or earlier, or v2.0.9 or earlier is affected and should be upgraded.
Risk and Exploitability
The CVSS score of 9.4 classifies the flaw as critical, with no authentication required and high exploitability. The EPSS score is currently unknown and the vulnerability is not listed in CISA’s KEV catalogue, yet the attack surface remains large because the issue is triggered during normal image pulls by the CRI plugin. An adversary can insert a crafted LABEL into a malicious image, which the restart‑monitor will subsequently execute on the host, providing a straightforward path to host compromise in container orchestration environments.
OpenCVE Enrichment
Github GHSA
Ubuntu USN