Lucene search
K

9269 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2022/02/18 5:30 p.m.52 views

Security Bulletin: Apache Log4j Vulnerability Affects IBM Sterling File Gateway (CVE-2021-45105, CVE-2021-45046)

Summary IBM Sterling File Gateway is impacted by Apache Log4j vulnerabilities CVE-2021-45105 and CVE-2021-45046. Final remediation images published below. As an alternative to the final remediation images, manual mitigation steps are also provided below. Vulnerability Details CVEID: CVE-2021-4510...

10CVSS0.9AI score0.99999EPSS
Exploits351Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2022/02/18 5:28 p.m.126 views

Security Bulletin: Apache Log4j Vulnerability Affects IBM Sterling File Gateway (CVE-2021-44228)

Summary IBM Sterling File Gateway is impacted by Log4Shell CVE-2021-44228, through the use of Apache Log4j's JNDI logging feature. Final remediation images published below. As an alternative to the final remediation images, manual mitigation steps are also provided below. Vulnerability Details...

10CVSS2AI score0.99999EPSS
Exploits347Affected Software1
OSV
OSV
added 2022/02/18 12:14 a.m.9 views

MGASA-2022-0071 Updated docker-containerd packages fix security vulnerability

Unprivileged pod may bind mount any privileged regular file on disk CVE-2021-43816...

9.1CVSS9.2AI score0.0169EPSS
Exploits1References3
Mageia
Mageia
added 2022/02/18 12:14 a.m.39 views

Updated docker-containerd packages fix security vulnerability

Unprivileged pod may bind mount any privileged regular file on disk CVE-2021-43816...

9.1CVSS3.1AI score0.0169EPSS
Exploits1References2
RedHat Linux
RedHat Linux
added 2022/02/16 11:19 a.m.3 views

jenkins-2-plugins/docker-commons: does not sanitize the name of an image or a tag which could result in an OS command execution

An OS command execution vulnerability was found in the Jenkins Docker Commons plugin. Due to a lack of sanitization in the name of an image or a tag, an attacker with Item/Configure permission or the ability to control the contents of a previously configured job’s SCM repository may be able to...

8.8CVSS5.9AI score0.02277EPSS
Exploits0References5
Gitee
Gitee
added 2022/02/16 10:11 a.m.3 views

vulhub

This is a pre-built vulnerable environment based on Docker-Compose, maintained by the Vulhub project. The repository contains a collection of vulnerable applications and services, including CouchDB, FFmpeg, Git, and more, which can be used for testing and training purposes. The environment is...

8AI score
Exploits0
RedHat Linux
RedHat Linux
added 2022/02/16 6:50 a.m.4 views

jenkins-2-plugins/docker-commons: does not sanitize the name of an image or a tag which could result in an OS command execution

An OS command execution vulnerability was found in the Jenkins Docker Commons plugin. Due to a lack of sanitization in the name of an image or a tag, an attacker with Item/Configure permission or the ability to control the contents of a previously configured job’s SCM repository may be able to...

8.8CVSS5.9AI score0.02277EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2022/02/16 12:0 a.m.30 views

RHEL 8 : OpenShift Container Platform 4.8.31 (RHSA-2022:0483)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2022:0483 advisory. Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or privat...

8.8CVSS6.9AI score0.02277EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2022/02/16 12:0 a.m.28 views

RHEL 8 : OpenShift Container Platform 4.7.43 (RHSA-2022:0491)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2022:0491 advisory. Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or privat...

8.8CVSS6.9AI score0.02277EPSS
Exploits0References6
OSV
OSV
added 2022/02/15 1:57 a.m.23 views

GHSA-8FVR-5RQF-3WWH Information Exposure in Docker Engine

Docker Engine before 1.6.1 uses weak permissions for 1 /proc/asound, 2 /proc/timerstats, 3 /proc/latencystats, and 4 /proc/fs, which allows local users to modify the host, obtain sensitive information, and perform protocol downgrade attacks via a crafted image...

8.4CVSS7.3AI score0.00548EPSS
Exploits0References10
OSV
OSV
added 2022/02/15 1:57 a.m.18 views

GHSA-G44J-7VP3-68CV Arbitrary File Write in Libcontainer

Libcontainer 1.6.0, as used in Docker Engine, allows local users to escape containerization "mount namespace breakout" and write to arbitrary file on the host system via a symlink attack in an image when respawning a container...

8.4CVSS7.4AI score0.00603EPSS
Exploits0References9
OSV
OSV
added 2022/02/15 1:57 a.m.26 views

GHSA-997C-FJ8J-RQ5H Arbitrary Code Execution

Docker 1.3.2 allows remote attackers to execute arbitrary code with root privileges via a crafted 1 image or 2 build in a Dockerfile in an LZMA .xz archive, related to the chroot for archive extraction...

9.8CVSS8.7AI score0.06452EPSS
Exploits0References7
OSV
OSV
added 2022/02/15 1:57 a.m.27 views

GHSA-44GG-PMQR-4669 Access Restriction Bypass in Docker

Docker 1.3.0 through 1.3.1 allows remote attackers to modify the default run profile of image containers and possibly bypass the container by applying unspecified security options to an image...

5CVSS8.3AI score0.03138EPSS
Exploits0References9
OSV
OSV
added 2022/02/15 1:57 a.m.27 views

GHSA-QRRC-WW9X-R43G Improper Input Validation in Docker Engine

An issue was discovered in Docker Engine before 19.03.11. An attacker in a container, with the CAPNETRAW capability, can craft IPv6 router advertisements, and consequently spoof external IPv6 hosts, obtain sensitive information, or cause a denial of service...

6CVSS6.1AI score0.02839EPSS
Exploits0References10
OSV
OSV
added 2022/02/15 1:57 a.m.23 views

GHSA-V4H8-794J-G8MM Arbitrary File Override in Docker Engine

Docker Engine before 1.6.1 allows local users to set arbitrary Linux Security Modules LSM and dockert policies via an image that allows volumes to override files in /proc...

5.1CVSS7.4AI score0.00567EPSS
Exploits0References9
OSV
OSV
added 2022/02/15 1:57 a.m.22 views

GHSA-8W94-CF6G-C8MG Man-in-the-Middle (MitM)

Docker before 1.3.1 and docker-py before 0.5.3 fall back to HTTP when the HTTPS connection to the registry fails, which allows man-in-the-middle attackers to conduct downgrade attacks and obtain authentication and image data by leveraging a network position between the client and the registry to...

6.9CVSS7.9AI score0.01867EPSS
Exploits0References7
Github Security Blog
Github Security Blog
added 2022/02/15 1:57 a.m.34 views

Arbitrary Code Execution

Docker 1.3.2 allows remote attackers to execute arbitrary code with root privileges via a crafted 1 image or 2 build in a Dockerfile in an LZMA .xz archive, related to the chroot for archive extraction...

10CVSS8.8AI score0.06452EPSS
Exploits0References8Affected Software1
Github Security Blog
Github Security Blog
added 2022/02/15 1:57 a.m.31 views

Access Restriction Bypass in Docker

Docker 1.3.0 through 1.3.1 allows remote attackers to modify the default run profile of image containers and possibly bypass the container by applying unspecified security options to an image...

5CVSS6.5AI score0.03138EPSS
Exploits0References10Affected Software1
Github Security Blog
Github Security Blog
added 2022/02/15 1:57 a.m.29 views

Man-in-the-Middle (MitM)

Docker before 1.3.1 and docker-py before 0.5.3 fall back to HTTP when the HTTPS connection to the registry fails, which allows man-in-the-middle attackers to conduct downgrade attacks and obtain authentication and image data by leveraging a network position between the client and the registry to...

5CVSS6.3AI score0.01867EPSS
Exploits0References7Affected Software1
Github Security Blog
Github Security Blog
added 2022/02/15 1:57 a.m.25 views

Path Traversal in HashiCorp Nomad

HashiCorp Nomad and Nomad Enterprise 0.9.0 up to 0.12.7 client Docker file sandbox feature github.com/hashicorp/nomad/drivers/docker may be subverted when not explicitly disabled or when using a volume mount type. Fixed in 0.12.8, 0.11.7, and 0.10.8...

6.5CVSS6.2AI score0.01631EPSS
Exploits0References6Affected Software1
Rows per page
Query Builder