Phantom Track
Level 22 → Level 23
Leaky Vessels
ACT IV920 pts+50 first-blood bonus
First Blood: @galile0
Mission
Exploit a 2024 container-runtime fd-leak vulnerability — locate the leaked descriptor and use it to read a host file that is unreadable by literal path.
Why this matters in 2026
This was the 2024 headline container CVE — ~80% of cloud environments were affected. The fd-leak pattern recurs across container runtimes.
Mitigation era: 2024-01 · rotation policy: levels may be refreshed as CVEs are patched out of distro defaults.
Connection Terminal
Use the password forphantom22 that you captured on the previous level, then:ssh [email protected] -p 2223SSH command copied to clipboard!
Flag Submission
Log in to submit flags and track progress.
🩸
ACTIVE RECORDFirst Blood captured by