CVE-2025-31133: runc container escape via "masked path" abuse due to mount race conditions

Overview

Severity

N/A

Exploit Status

Not Exploited

Patch Tuesday

2025-Nov

Released

2025-11-09

Last Updated

2025-12-17

EPSS Score

0.01% (percentile: 2.6%)

Detection & Weaponization (1 sources)

Maturity: Exploit

• GitHub PoC: 3 repositories

Affected Products (3)

Other

• 20659-17086
• 20364-17086
• 20624-17084

Revision History

• 2025-11-09: Information published.
• 2025-11-21: Information published.
• 2025-12-02: Information published.
• 2025-12-17: Information published.