Lucene search
K

9260 matches found

Photon
Photon
added 2021/10/05 12:0 a.m.38 views

Moderate Photon OS Security Update - PHSA-2021-0311

Updates of 'containerd', 'docker' packages of Photon OS have been released...

7.2CVSS2.1AI score0.00482EPSS
Exploits0
Amazon
Amazon
added 2021/10/05 12:0 a.m.49 views

Medium: docker

Issue Overview: A bug was found in Moby Docker Engine where attempting to copy files using docker cp into a specially-crafted container can result in Unix file permission changes for existing files in the host 2019s filesystem, widening access to others. This bug does not directly allow files to ...

7.5CVSS6.4AI score0.02693EPSS
Exploits3
Photon
Photon
added 2021/10/05 12:0 a.m.54 views

Important Photon OS Security Update - PHSA-2021-3.0-0311

Updates of 'docker', 'containerd' packages of Photon OS have been released...

5.8AI score
Exploits0
Ubuntu
Ubuntu
added 2021/10/04 10:48 p.m.129 views

USN-5103-1: docker.io vulnerability

Lei Wang and Ruizhi Xiao discovered that the Moby Docker engine in Docker incorrectly allowed the docker cp command to make permissions changes in the host filesystem in some situations. A local attacker could possibly use to this to expose sensitive information or gain administrative privileges...

6.3CVSS6.1AI score0.0027EPSS
Exploits0
OSV
OSV
added 2021/10/04 10:48 p.m.4 views

USN-5103-1 docker.io vulnerability

Lei Wang and Ruizhi Xiao discovered that the Moby Docker engine in Docker incorrectly allowed the docker cp command to make permissions changes in the host filesystem in some situations. A local attacker could possibly use to this to expose sensitive information or gain administrative privileges...

6.3CVSS6.4AI score0.0027EPSS
Exploits0References2
OSV
OSV
added 2021/10/04 9:15 p.m.2 views

DEBIAN-CVE-2021-41091

Moby is an open-source project created by Docker to enable software containerization. A bug was found in Moby Docker Engine where the data directory typically /var/lib/docker contained subdirectories with insufficiently restricted permissions, allowing otherwise unprivileged Linux users to traver...

6.3CVSS6.4AI score0.02693EPSS
Exploits3References1
NVD
NVD
added 2021/10/04 9:15 p.m.23 views

CVE-2021-41089

Moby is an open-source project created by Docker to enable software containerization. A bug was found in Moby Docker Engine where attempting to copy files using docker cp into a specially-crafted container can result in Unix file permission changes for existing files in the host’s filesystem,...

6.3CVSS0.0027EPSS
Exploits0References5
NVD
NVD
added 2021/10/04 9:15 p.m.17 views

CVE-2021-41091

Moby is an open-source project created by Docker to enable software containerization. A bug was found in Moby Docker Engine where the data directory typically /var/lib/docker contained subdirectories with insufficiently restricted permissions, allowing otherwise unprivileged Linux users to traver...

6.3CVSS0.02693EPSS
Exploits3References5
OSV
OSV
added 2021/10/04 9:15 p.m.3 views

DEBIAN-CVE-2021-41089

Moby is an open-source project created by Docker to enable software containerization. A bug was found in Moby Docker Engine where attempting to copy files using docker cp into a specially-crafted container can result in Unix file permission changes for existing files in the host’s filesystem,...

6.3CVSS5.8AI score0.0027EPSS
Exploits0References1
OSV
OSV
added 2021/10/04 9:15 p.m.43 views

CVE-2021-41091

Moby is an open-source project created by Docker to enable software containerization. A bug was found in Moby Docker Engine where the data directory typically /var/lib/docker contained subdirectories with insufficiently restricted permissions, allowing otherwise unprivileged Linux users to traver...

6.3CVSS6.6AI score
Exploits0References5
OSV
OSV
added 2021/10/04 9:15 p.m.21 views

CVE-2021-41089

Moby is an open-source project created by Docker to enable software containerization. A bug was found in Moby Docker Engine where attempting to copy files using docker cp into a specially-crafted container can result in Unix file permission changes for existing files in the host’s filesystem,...

6.3CVSS6.5AI score
Exploits0References5
Prion
Prion
added 2021/10/04 9:15 p.m.31 views

Design/Logic Flaw

Moby is an open-source project created by Docker to enable software containerization. A bug was found in Moby Docker Engine where the data directory typically /var/lib/docker contained subdirectories with insufficiently restricted permissions, allowing otherwise unprivileged Linux users to traver...

4.6CVSS6.3AI score0.02693EPSS
Exploits3References5Affected Software2
Prion
Prion
added 2021/10/04 9:15 p.m.27 views

Design/Logic Flaw

Moby is an open-source project created by Docker to enable software containerization. A bug was found in Moby Docker Engine where attempting to copy files using docker cp into a specially-crafted container can result in Unix file permission changes for existing files in the host’s filesystem,...

4.4CVSS6.5AI score0.0027EPSS
Exploits0References5Affected Software2
OSV
OSV
added 2021/10/04 9:15 p.m.3 views

UBUNTU-CVE-2021-41091

Moby is an open-source project created by Docker to enable software containerization. A bug was found in Moby Docker Engine where the data directory typically /var/lib/docker contained subdirectories with insufficiently restricted permissions, allowing otherwise unprivileged Linux users to traver...

6.3CVSS6.5AI score0.02693EPSS
Exploits3References3
RedhatCVE
RedhatCVE
added 2021/10/04 8:23 p.m.50 views

CVE-2021-41089

A file permissions vulnerability was found in Moby Docker Engine. Copying files by using docker cp into a specially-crafted container can result in Unix file permission changes for existing files in the host's filesystem, which might lead to permissions escalation and allow an attacker access to...

6.3CVSS1.3AI score0.0027EPSS
Exploits0References4
Cvelist
Cvelist
added 2021/10/04 8:20 p.m.33 views

CVE-2021-41089 `docker cp` allows unexpected chmod of host files

Moby is an open-source project created by Docker to enable software containerization. A bug was found in Moby Docker Engine where attempting to copy files using docker cp into a specially-crafted container can result in Unix file permission changes for existing files in the host’s filesystem,...

2.8CVSS7AI score0.0027EPSS
Exploits0References5
AlpineLinux
AlpineLinux
added 2021/10/04 8:20 p.m.51 views

CVE-2021-41089

Moby is an open-source project created by Docker to enable software containerization. A bug was found in Moby Docker Engine where attempting to copy files using docker cp into a specially-crafted container can result in Unix file permission changes for existing files in the host’s filesystem,...

6.3CVSS5.8AI score0.0027EPSS
Exploits0
Debian CVE
Debian CVE
added 2021/10/04 8:20 p.m.31 views

CVE-2021-41089

Moby is an open-source project created by Docker to enable software containerization. A bug was found in Moby Docker Engine where attempting to copy files using docker cp into a specially-crafted container can result in Unix file permission changes for existing files in the host’s filesystem,...

6.3CVSS5.8AI score0.0027EPSS
Exploits0
CVE
CVE
added 2021/10/04 8:20 p.m.504 views

CVE-2021-41089

CVE-2021-41089 concerns Moby (Docker Engine). A bug in docker cp into a specially-crafted container can cause Unix file permission changes for existing host files, potentially widening access to others. The issue is fixed in Moby/Docker Engine 20.10.9; users should upgrade to that version. Runnin...

6.3CVSS5.5AI score0.0027EPSS
Exploits0References5Affected Software1
CVE
CVE
added 2021/10/04 8:20 p.m.279 views

CVE-2021-41091

CVE-2021-41091 concerns Moby (Docker Engine). A bug in the Docker Engine data directory (/var/lib/docker) left subdirectories with weak permissions, enabling unprivileged host users to traverse contents and, if containers held executables with elevated bits (e.g., setuid), to discover and run tho...

6.3CVSS6.9AI score0.02693EPSS
Exploits3References5Affected Software1
Rows per page
Query Builder