Privilege escalation

Docker Desktop Community before 2.5.0.0 on macOS mishandles certificate checking, leading to local privilege escalation...

CVE-2021-3162

Affected software: Docker Desktop Community for macOS prior to 2.5.0.0. Root cause: mishandling of certificate checking in this version. Impact: local privilege escalation. Remediation: upgrade to Docker Desktop Community 2.5.0.0 or newer (per linked release notes). If newer versions are unavaila...

CVE-2021-3162

Docker Desktop Community before 2.5.0.0 on macOS mishandles certificate checking, leading to local privilege escalation...

Exploit for Cross-site Scripting in Squid-Cache Squid

CVE-2018-19131 is a proof-of-concept exploit for a vulnerability in Squid, a caching and proxy server. The exploit is built using a Docker Compose application and is designed to demonstrate the vulnerability. The vulnerability is in the Squid version 3.5.27, which is the version used in the...

Stegbrute - Fast Steganography Bruteforce Tool Written In Rust Useful For CTF's

stegbrute is a fast steganography brute force tool written in Rust using also threads to achieve a faster execution Dependencies Stegbrute cannot run without steghide!, to install steghide run : apt-get install -y steghide if you are not in a debian distribution you can download it from steghide...

Docker Desktop 信任管理问题漏洞

Docker Desktop is a container technology-based desktop software for lightweight deployment of applications from the U.S. company Docker. The product provides a desktop environment that supports creating a container lightweight virtual machine and deploying and running applications on...

[SECURITY] Fedora 32 Update: golang-github-docker-credential-helpers-0.6.3-2.fc32

Docker-credential-helpers is a suite of programs to use native stores to ke ep Docker credentials safe...

Fedora: Security Advisory for golang-github-docker-credential-helpers (FEDORA-2021-03bcfa3491)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Fedora 32 : golang-github-docker-credential-helpers (2021-03bcfa3491)

The remote Fedora 32 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2021-03bcfa3491 advisory. - docker-credential-helpers before 0.6.3 has a double free in the List functions. CVE-2019-1020014 Note that Nessus has not tested for this issue bu...

USN-4653-2 containerd vulnerability

USN-4653-1 fixed a vulnerability in containerd. Unfortunately, those containerd packages introduced a regression in docker.io and the update was reverted. This update addresses the docker.io issue and reintroduces the fixes from USN-4653-1. We apologize for the inconvenience...

Microsoft Windows Multiple Vulnerabilities (KB4598229)

This host is missing a critical security update according to Microsoft KB4598229 SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Microsoft Windows Multiple Vulnerabilities (KB4598230)

This host is missing a critical security update according to Microsoft KB4598230 SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Microsoft Windows Multiple Vulnerabilities (KB4598243)

This host is missing a critical security update according to Microsoft KB4598243 SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Microsoft Windows Multiple Vulnerabilities (KB4598242)

This host is missing a critical security update according to Microsoft KB4598242 SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2021-1645

Windows Docker Information Disclosure Vulnerability...

CVE-2021-1645

Windows Docker Information Disclosure Vulnerability...

Information disclosure

Windows Docker Information Disclosure Vulnerability...

CVE-2021-1645 Windows Docker Information Disclosure Vulnerability

...

CVE-2021-1645 Windows Docker Information Disclosure Vulnerability

...

CVE-2021-1645

CVE-2021-1645 is a Windows DP API cryptography flaw affecting Windows Containers that can lead to information disclosure. Affected component: Windows Containers use of DP API; root cause described as a cryptographic flaw in the Windows DP API within container contexts. Impact is confidentiality b...