๐Ÿ›ก๏ธ NAIL Institute โ€” AVE Database

โ† Back to Database

Container Isolation Bleed

๐ŸŸ  HIGH structural proven AVE-2025-0017

ยท aka: Sandbox Escape, Environment Leakage

Summary

Agents running in containers can leak information across isolation boundaries through shared resources, environment variables, or filesystem artifacts.

Blast Radius

Cross-tenant data leakage. Sandbox escape.

Prerequisites

Agent with code execution inside a container.

Environment

  • Frameworks: Docker, Kubernetes
  • Models tested: [Available in NAIL SDK]
  • Multi-agent: No
  • Tools required: No
  • Memory required: No

Related