Researchers at CyberArk have created a proof-of-concept attack that allows adversaries to bypass container security. The attack scenario is limited, in that a successful attack depends on unpatched vulnerabilities to be present in the host system. CyberArk is presenting research here at the RSA Conference on Thursday. Researchers point out that the highlighted vulnerability (CVE-2017-7308) is one of many that can be easily adapted, with 20 lines of code, to escape a container and attack a vulnerable host.
Source: https://threatpost.com/container-escape-hack-targets-vulnerable-linux-kernel/142407/