It is possible to access files outside of its container. ')
The open_by_handle_at () function allows you to access files on a mounted file system using the file_handle structure.
This allows an attacker to bypass simfs restrictions and access all files on the main file system, including other virtual machines located on the same file system.