Runc flaws allow potential container escape.

Researchers found vulnerabilities in the Runc container runtime that could let attackers break out and gain root access. The flaws, tracked as CVE-2025-31133, CVE-2025-52565, and CVE-2025-52881, can be exploited with malicious containers using custom mount configurations. Updates have been released, and vendors like Red Hat and AWS issued advisories to customers. While rated medium severity, experts warn the impact could be greater for platforms like Docker and Kubernetes, though no active exploitation has been reported.

Read more:

https://www.securityweek.com/runc-vulnerabilities-can-be-exploited-to-escape-containers/