PT-2023-2594 · Docker · Docker Desktop For Windows

Name of the Vulnerable Software and Affected Versions: Docker Desktop for Windows versions prior to 4.6.0 Description: The issue is related to a symlink attack on the hyperv/create dockerBackendV2 API, allowing attackers to overwrite any file by controlling the DataFolder parameter for...

Docker Desktop 后置链接漏洞

Docker Desktop is a container technology-based desktop software for lightweight deployment of applications from the U.S. company Docker. The product provides a desktop environment that supports creating a container lightweight virtual machine and deploying and running applications on...

CVE-2022-34292

Docker Desktop for Windows before 4.6.0 allows attackers to overwrite any file through a symlink attack on the hyperv/create dockerBackendV2 API by controlling the DataFolder parameter for DockerDesktop.vhdx, a similar issue to CVE-2022-31647...

Docker Desktop 安全漏洞

Docker Desktop is a container technology-based desktop software for lightweight deployment of applications from the U.S. company Docker. The product provides a desktop environment that supports creating a container lightweight virtual machine and deploying and running applications on...

CVE-2022-37326

Docker Desktop for Windows before 4.6.0 is affected. The flaw resides in the dockerBackendV2 WindowsContainersStart API, where the pidfile field inside the DaemonJSON WindowsContainerStartRequest can be controlled to delete or create arbitrary files. This can indirectly enable privilege escalatio...

CVE-2022-31647

Docker Desktop for Windows is affected by CVE-2022-31647 in the hyperv/destroy dockerBackendV2 API, where a symlink in the DataFolder parameter can be abused to delete arbitrary files. The issue is tied to Docker Desktop prior to 4.6.0; the vulnerability’s activity is described as a local attack ...

CVE-2022-34292

CVE-2022-34292 affects Docker Desktop for Windows prior to 4.6.0. The vulnerability stems from a symlink attack on the hyperv/create dockerBackendV2 API, where an attacker can influence the DataFolder parameter for DockerDesktop.vhdx to overwrite arbitrary files. This is described as a related is...

CVE-2022-38730

CVE-2022-38730 affects Docker Desktop for Windows prior to 4.6. The vulnerability arises in the WindowsContainerStartRequest path, where an attacker can influence the data-root field inside the DaemonJSON of the WindowsContainerStartRequest, triggering a TOCTOU race that enables overwriting arbit...

Security Bulletin: Docker based datastores for IBM Instana do not currently require authentication

Summary Docker based datastores for IBM Instana do not currently require authentication. Due to this, an attacker with network or system access to the datastores could interrogate the datastores with read/write privileges CVE-2023-27290. Vulnerability Details CVEID:CVE-2023-27290 DESCRIPTION:...

Kubernetes RBAC Exploited in Large-Scale Campaign for Cryptocurrency Mining

A large-scale attack campaign discovered in the wild has been exploiting Kubernetes K8s Role-Based Access Control RBAC to create backdoors and run cryptocurrency miners. "The attackers also deployed DaemonSets to take over and hijack resources of the K8s clusters they attack," cloud security firm...

Fedora 37 : runc (2023-1ba499965f)

The remote Fedora 37 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-1ba499965f advisory. Security fix for CVE-2023-27561 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus h...

Exploit for Path Traversal in Apache Http_Server

CVE-2021-41773 A Demonstration to show the CVE-2021-41773 vul...

Arbitrary Code Execution in Apache BRPC

Description BRPC is an Industrial-grade RPC framework using C++ Language, which is often used in high performance system such as Search, Storage, Machine learning, Advertisement, Recommendation etc. In server.cpp there are function call to wordexp, it used for expanding path from user input. Due ...

SUSE CVE-2023-1174

This vulnerability exposes a network port in minikube running on macOS with Docker driver that could enable unexpected remote access to the minikube container...

Dell PowerPath Management Appliance Elevation of Privilege Vulnerability

The Dell PowerPath Management Appliance is a PowerPath host management application from Dell Inc. that offers two models: a virtual machine-based appliance and a Docker containerized appliance. An elevation of privilege vulnerability exists in Dell PowerPath Management Appliance version 3.3, whic...

CVE-2023-28960

An Incorrect Permission Assignment for Critical Resource vulnerability in Juniper Networks Junos OS Evolved allows a local, authenticated low-privileged attacker to copy potentially malicious files into an existing Docker container on the local system. A follow-on administrator could then...

CVE-2023-28960

An Incorrect Permission Assignment for Critical Resource vulnerability in Juniper Networks Junos OS Evolved allows a local, authenticated low-privileged attacker to copy potentially malicious files into an existing Docker container on the local system. A follow-on administrator could then...

Code injection

An Incorrect Permission Assignment for Critical Resource vulnerability in Juniper Networks Junos OS Evolved allows a local, authenticated low-privileged attacker to copy potentially malicious files into an existing Docker container on the local system. A follow-on administrator could then...

CVE-2023-28960 Junos OS Evolved: Docker repository is world-writeable, allowing low-privileged local user to inject files into Docker containers

An Incorrect Permission Assignment for Critical Resource vulnerability in Juniper Networks Junos OS Evolved allows a local, authenticated low-privileged attacker to copy potentially malicious files into an existing Docker container on the local system. A follow-on administrator could then...

Juniper Networks Junos OS Evolved 安全漏洞

Juniper Networks Junos OS Evolved is an upgraded version of Juniper Networks' Junos OS system. A security vulnerability in Juniper Networks Junos OS Evolved, which arises from an incorrect assignment of critical resource permissions, can be exploited by an attacker to copy a potentially malicious...