Lucene search
K

36 matches found

Wolfi
Wolfi
added 2025/03/22 4:43 a.m.22 views

CVE-2021-41089 vulnerabilities

Vulnerabilities for packages: docker...

6.3CVSS7.1AI score0.0027EPSS
Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2024/08/05 7:51 p.m.28 views

Security Bulletin: IBM Storage Ceph is vulnerable to Files or Directories Accessible to External Parties in Grafana (CVE-2021-41089, CVE-2022-24769, CVE-2021-41091, CVE-2018-20699, CVE-2022-36109)

Summary Moby is used by IBM Storage Ceph in Grafana as part of metrics. This bulletin identifies the steps to take to address the vulnerability in Grafana. CVE-2021-41089, CVE-2022-24769, CVE-2021-41091, CVE-2018-20699, CVE-2022-36109. Vulnerability Details CVEID:CVE-2022-36109 DESCRIPTION: Moby...

6.3CVSS8AI score0.02693EPSS
Exploits3Affected Software1
Tenable Nessus
Tenable Nessus
added 2024/01/15 12:0 a.m.35 views

Siemens SCALANCE LPE9403 Improper Preservation of Permissions (CVE-2021-41089)

A vulnerability was found in Moby Docker Engine where attempting to copy files using 'docker cp' into a specially-crafted container can result in Unix file permission changes for existing files in the host's filesystem, widening access to others. This bug does not directly allow files to be read,...

6.3CVSS5.9AI score0.0027EPSS
Exploits0References4
IBM Security Bulletins
IBM Security Bulletins
added 2023/05/15 6:56 p.m.40 views

Security Bulletin: Open Source Dependency Vulnerability

Summary IBM Edge Application Manager 4.5 has resolved the vulnerability. Vulnerability Details CVEID:CVE-2022-36109 DESCRIPTION: Moby could allow a remote authenticated attacker to execute arbitrary code on the system, caused by a flaw with the supplementary groups are not set up properly. By...

6.3CVSS8.2AI score0.02693EPSS
Exploits3Affected Software1
Tenable Nessus
Tenable Nessus
added 2023/04/11 12:0 a.m.48 views

NewStart CGSL CORE 5.05 / MAIN 5.05 : docker-ce Multiple Vulnerabilities (NS-SA-2023-0014)

The remote NewStart CGSL host, running version CORE 5.05 / MAIN 5.05, has docker-ce packages installed that are affected by multiple vulnerabilities: - Moby is an open-source project created by Docker to enable software containerization. A bug was found in Moby Docker Engine where attempting to...

6.3CVSS7.7AI score0.02693EPSS
Exploits4References7
IBM Security Bulletins
IBM Security Bulletins
added 2022/10/14 9:28 p.m.46 views

Security Bulletin: Multiple vulnerabilities in Docker affect IBM InfoSphere Information Server

Summary Multiple vulnerabilities in Docker used by IBM InfoSphere Information Server were addressed. Vulnerability Details CVEID:CVE-2022-24769 DESCRIPTION: Moby could allow a local attacker to gain elevated privileges on the system, caused by an issue with containers started incorrectly with...

6.3CVSS7.6AI score0.02693EPSS
Exploits3Affected Software1
Tenable Nessus
Tenable Nessus
added 2022/09/14 12:0 a.m.42 views

EulerOS 2.0 SP9 : docker-engine (EulerOS-SA-2022-2311)

According to the versions of the docker-engine package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Moby is an open-source project created by Docker to enable software containerization. A bug was found in Moby Docker Engine where attempti...

7.5CVSS7.3AI score0.02693EPSS
Exploits3References4
OpenVAS
OpenVAS
added 2022/09/14 12:0 a.m.33 views

Huawei EulerOS: Security Advisory for docker-engine (EulerOS-SA-2022-2311)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.2AI score0.02693EPSS
Exploits3References2
OpenVAS
OpenVAS
added 2022/08/18 12:0 a.m.33 views

Huawei EulerOS: Security Advisory for docker-engine (EulerOS-SA-2022-2218)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.1AI score0.02693EPSS
Exploits3References2
OpenVAS
OpenVAS
added 2022/08/18 12:0 a.m.25 views

Huawei EulerOS: Security Advisory for docker-engine (EulerOS-SA-2022-2240)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.3AI score0.02693EPSS
Exploits3References2
OpenVAS
OpenVAS
added 2022/08/18 12:0 a.m.29 views

Huawei EulerOS: Security Advisory for docker (EulerOS-SA-2022-2265)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.2AI score0.02693EPSS
Exploits3References2
Tenable Nessus
Tenable Nessus
added 2022/08/18 12:0 a.m.82 views

EulerOS 2.0 SP5 : docker (EulerOS-SA-2022-2265)

According to the versions of the docker package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Moby is an open-source project created by Docker to enable software containerization. A bug was found in Moby Docker Engine where attempting to...

7.5CVSS7.3AI score0.02693EPSS
Exploits3References4
Tenable Nessus
Tenable Nessus
added 2022/08/17 12:0 a.m.41 views

EulerOS 2.0 SP10 : docker-engine (EulerOS-SA-2022-2240)

According to the versions of the docker-engine package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Moby is an open-source project created by Docker to enable software containerization. A bug was found in Moby Docker Engine where attempti...

7.8CVSS7.3AI score0.02693EPSS
Exploits3References6
OSV
OSV
added 2022/07/08 11:3 a.m.4 views

OESA-2022-1739 docker security update

Docker is an open source project to build, ship and run any application as a lightweight container. Security Fixes: Moby is an open-source project created by Docker to enable software containerization. A bug was found in Moby Docker Engine where the data directory typically /var/lib/docker...

7.5CVSS7AI score0.02693EPSS
Exploits3References4
Tenable Nessus
Tenable Nessus
added 2022/05/11 12:0 a.m.51 views

Amazon Linux 2 : docker (ALASNITRO-ENCLAVES-2022-017)

The version of docker installed on the remote host is prior to 20.10.7-3. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2NITRO-ENCLAVES-2022-017 advisory. A file permissions vulnerability was found in Moby Docker Engine. Copying files by using docker cp into a...

7.5CVSS7.4AI score0.02693EPSS
Exploits3References7
Tenable Nessus
Tenable Nessus
added 2022/05/10 12:0 a.m.51 views

NewStart CGSL CORE 5.04 / MAIN 5.04 : docker-ce Multiple Vulnerabilities (NS-SA-2022-0018)

The remote NewStart CGSL host, running version CORE 5.04 / MAIN 5.04, has docker-ce packages installed that are affected by multiple vulnerabilities: - Moby is an open-source project created by Docker to enable software containerization. A bug was found in Moby Docker Engine where attempting to...

6.3CVSS7.3AI score0.02693EPSS
Exploits3References5
Tenable Nessus
Tenable Nessus
added 2022/05/09 12:0 a.m.34 views

NewStart CGSL MAIN 6.02 : docker-ce Multiple Vulnerabilities (NS-SA-2022-0071)

The remote NewStart CGSL host, running version MAIN 6.02, has docker-ce packages installed that are affected by multiple vulnerabilities: - Moby is an open-source project created by Docker to enable software containerization. A bug was found in Moby Docker Engine where attempting to copy files...

6.3CVSS7.3AI score0.02693EPSS
Exploits3References5
Tenable Nessus
Tenable Nessus
added 2022/05/02 12:0 a.m.66 views

Amazon Linux 2 : docker (ALASDOCKER-2022-017)

The version of docker installed on the remote host is prior to 20.10.7-3. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2DOCKER-2022-017 advisory. A file permissions vulnerability was found in Moby Docker Engine. Copying files by using docker cp into a...

7.5CVSS7.4AI score0.02693EPSS
Exploits3References7
Tenable Nessus
Tenable Nessus
added 2022/03/08 12:0 a.m.45 views

Amazon Linux 2 : docker (ALAS-2022-017) (deprecated)

This plugin has been deprecated following detection of an issue with overlapping filenames. Deprecated by al2ALASDOCKER-2022-017.nasl plugin ID 160411 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Amazon Linux 2 Security Advisory...

0.2AI score0.02693EPSS
Exploits3References7
Amazon
Amazon
added 2022/03/08 12:0 a.m.5 views

Important: docker

Issue Overview: A file permissions vulnerability was found in Moby Docker Engine. Copying files by using docker cp into a specially-crafted container can result in Unix file permission changes for existing files in the host's filesystem, which might lead to permissions escalation and allow an...

7.5CVSS7AI score0.02693EPSS
Exploits3
Rows per page
Query Builder