AWS containerd CRI Flaws: CVE-2026-50195 & More
🔴 Critical | Source: AWS Security Bulletins AWS has identified five vulnerabilities in containerd’s Container Runtime Interface (CRI) plugin affecting versions 1.7 through 2.3, impacting managed services including EKS, ECS, Fargate, Bottlerocket, and Amazon Linux. The flaws range from arbitrary host file reads and command execution via image labels, to container checkpoint abuse and a runtime denial-of-service. Exploitation could allow a malicious container image or checkpoint to compromise host systems or disrupt container workloads. ...