Lucene search
CVE-2015-1843
🗓️ 06 Apr 2015 15:00:59Reported by Debian Security Bug TrackerType 
debiancve🔗 security-tracker.debian.org👁 24 Views
The Red Hat Docker package before 1.5.0-28 allows man-in-the-middle attackers to conduct downgrade attacks and obtain authentication and image data by falling back to HTTP when the HTTPS connection to the registry fails
Show more
| Reporter | Title | Published | Views | Family All 30 |
|---|---|---|---|---|
 | CVE-2015-1843 | 6 Apr 201515:59 | – | nvd |
| CVE-2014-5277 | 17 Nov 201416:59 | – | nvd |
 | Moderate: Red Hat Security Advisory: docker security update | 2 Apr 201519:31 | – | redhat |
 | CVE-2015-1843 | 6 Apr 201515:00 | – | cvelist |
| CVE-2014-5277 | 17 Nov 201416:00 | – | cvelist |
 | CVE-2015-1843 | 6 Apr 201515:59 | – | cve |
| CVE-2014-5277 | 17 Nov 201416:59 | – | cve |
 | Authentication flaw | 6 Apr 201515:59 | – | prion |
| Authentication flaw | 17 Nov 201416:59 | – | prion |
 | RHEL 7 : docker (RHSA-2015:0776) | 3 Apr 201500:00 | – | nessus |
10
| OS | OS Version | Architecture | Package | Package Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | docker.io | 20.10.24+dfsg1-1+deb12u1 | docker.io_20.10.24+dfsg1-1+deb12u1_all.deb |
| Debian | 11 | all | docker.io | 20.10.5+dfsg1-1+deb11u2 | docker.io_20.10.5+dfsg1-1+deb11u2_all.deb |
| Debian | 999 | all | docker.io | 26.1.5+dfsg1-9 | docker.io_26.1.5+dfsg1-9_all.deb |
| Debian | 13 | all | docker.io | 26.1.5+dfsg1-9 | docker.io_26.1.5+dfsg1-9_all.deb |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo06 Apr 2015 15:59Current
7.2High risk
Vulners AI Score7.2
CVSS25
EPSS0.01125