### [CVE-2021-3101](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3101)
![](https://img.shields.io/static/v1?label=Product&message=Hotdog&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=%3C%201.0.1%20&color=brighgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-250%20Execution%20with%20Unnecessary%20Privileges&color=brighgreen)

### Description

Hotdog, prior to v1.0.1, did not mimic the capabilities or the SELinux label of the target JVM process. This would allow a container to gain full privileges on the host, bypassing restrictions set on the container.

### POC

#### Reference
- https://unit42.paloaltonetworks.com/aws-log4shell-hot-patch-vulnerabilities

#### Github
No PoCs found on GitHub currently.