1. CVSS 10 Sandbox Escape via Path Traversal in Docker and Singularity Container Environments
A critical path traversal vulnerability affecting Docker and Singularity persistent environments has been identified and patched. The flaw, rated CVSS 10, allows an attacker-controlled `task_id` parameter to redirect sandbox directory bind mounts outside the intended containment boundary, exposing the host filesystem t...