9207 matches found
PT-2025-34689 ยท Dockerย +1 ยท Dockerย +1
Name of the Vulnerable Software and Affected Versions: Airlink versions prior to 1.0.1 Description: Airlink's Daemon interfaces with Docker and the Panel to provide secure access for controlling instances via the Panel. An attacker with access to the affected container can create symbolic links...
CVE-2025-9074
A vulnerability was identified in Docker Desktop that allows local running Linux containers to access the Docker Engine API via the configured Docker subnet, at 192.168.65.7:2375 by default. This vulnerability occurs with or without Enhanced Container Isolation ECI enabled, and with or without th...
Exploit for Path Traversal in Ctfer-Io Chall-Manager
CVE-2025-53632 This repository contains an exploit of CVE-2...
CVE-2025-57734
In JetBrains TeamCity before 2025.07.1 aWS credentials were exposed in Docker script files...
Fedora 44 : docker-buildx (2025-d6e22cfe3d)
The remote Fedora 44 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-d6e22cfe3d advisory. Automatic update for docker-buildx-0.27.0-1.fc44. Changelog Wed Aug 20 2025 Bradley G Smith - 0.27.0-1 - Update to release v0.27.0 - Resolves: rhvz2388453,...
Fedora 43 : docker-buildx (2025-f2bcb1f99e)
The remote Fedora 43 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-f2bcb1f99e advisory. Automatic update for docker-buildx-0.27.0-1.fc43. Changelog Wed Aug 20 2025 Bradley G Smith - 0.27.0-1 - Update to release v0.27.0 - Resolves: rhvz2388453,...
JetBrains TeamCity < 2025.07.1 Multiple Vulnerabilities
The version of JetBrains TeamCity installed on the remote host is prior to 2025.07.1. It is, therefore, affected by multiple vulnerabilities as referenced in the advisory. - In JetBrains TeamCity before 2025.07.1 privilege escalation was possible due to incorrect directory ownership. CVE-2025-577...
CVE-2025-55740
nginx-defender is a high-performance, enterprise-grade Web Application Firewall WAF and threat detection system engineered for modern web infrastructure. This is a configuration vulnerability affecting nginx-defender deployments. Example configuration files config.yaml and docker-compose.yml...
Security update for docker
This update for docker fixes the following issues: Update to Docker 28.3.3-ce: CVE-2025-54388: firewalld reload can make published container ports accessible from remote hosts bsc1247367 Update to docker-buildx v0.26.1. Patch Instructions: To install this SUSE update use the SUSE recommended...
SUSE-SU-2025:20565-1 Security update for docker
This update for docker fixes the following issues: - Update to Docker 28.3.3-ce: CVE-2025-54388: firewalld reload can make published container ports accessible from remote hosts bsc1247367 - Update to docker-buildx v0.26.1...
Photon OS 4.0: Docker PHSA-2025-4.0-0856
An update of the docker package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2025-4.0-0856. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...
CVE-2025-9074
A vulnerability was identified in Docker Desktop that allows local running Linux containers to access the Docker Engine API via the configured Docker subnet, at 192.168.65.7:2375 by default. This vulnerability occurs with or without Enhanced Container Isolation ECI enabled, and with or without th...
CVE-2025-9074 Docker Desktop allows unauthenticated access to Docker Engine API from containers
A vulnerability was identified in Docker Desktop that allows local running Linux containers to access the Docker Engine API via the configured Docker subnet, at 192.168.65.7:2375 by default. This vulnerability occurs with or without Enhanced Container Isolation ECI enabled, and with or without th...
CVE-2025-9074 Docker Desktop allows unauthenticated access to Docker Engine API from containers
A vulnerability was identified in Docker Desktop that allows local running Linux containers to access the Docker Engine API via the configured Docker subnet, at 192.168.65.7:2375 by default. This vulnerability occurs with or without Enhanced Container Isolation ECI enabled, and with or without th...
CVE-2025-9074
CVE-2025-9074 : Docker Desktop exposes the Docker Engine API on the internal subnet (example: 192.168.65.7:2375) without authentication, enabling a container to create a privileged container that mounts host filesystem access. Public writeups and exploits in the connected literature demonstrate a...
CVE-2025-57734
In JetBrains TeamCity before 2025.07.1 aWS credentials were exposed in Docker script files...
CVE-2025-57734
In JetBrains TeamCity before 2025.07.1 aWS credentials were exposed in Docker script files...
CVE-2025-57734
In JetBrains TeamCity, versions prior to 2025.07.1 expose AWS credentials inside Docker script files, constituting an information disclosure vulnerability. Supported by multiple sources in the connected set (e.g., Red Hat advisory and PT Security note) consistently identifying the affected softwa...
CVE-2025-57734
In JetBrains TeamCity before 2025.07.1 aWS credentials were exposed in Docker script files...
CVE-2025-57734
In JetBrains TeamCity before 2025.07.1 aWS credentials were exposed in Docker script files...