Browse all 17 CVE security advisories affecting containerd. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Containerd serves as an industry-standard container runtime for managing container lifecycle, widely adopted in Kubernetes environments. Historically, vulnerabilities have included remote code execution, privilege escalation, and denial-of-service flaws, often stemming from improper input validation or insecure default configurations. The project maintains a security-first approach with regular audits and a vulnerability disclosure program. While no major incidents have been widely reported, the 17 documented CVEs highlight potential risks in areas like image handling and runtime process isolation. Organizations should implement strict access controls and keep components updated to mitigate risks, as containerd's position in critical infrastructure makes it a potential target for attacks seeking to compromise containerized environments.
CVE-2021-438162025-11-13CVE-2025-643292025-11-09CVE-2024-256212025-11-09Showing up to 20 recent security advisories. View all →
This page lists every published CVE security advisory associated with containerd. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.