Lucene search
+L

160 matches found

BDU FSTEC
BDU FSTEC
added 3 days ago5 views

The vulnerability of the Moby container isolation system creation software, related to synchronization errors when using shared resources, allows a intruder to trigger a service failure.

The vulnerability of the Moby container isolation system creation software is related to synchronization errors when using a shared resource “Race Conditions”. Exploiting this vulnerability can allow an attacker to cause a service failure...

7.2CVSS6.1AI score0.00104EPSS
Exploits0References3Affected Software3
NVD
NVD
added 4 days ago3 views

CVE-2026-50428

Out-of-bounds read in Windows Container Isolation FS Filter Driver unionfs.sys allows an authorized attacker to disclose information locally...

7.1CVSS0.00302EPSS
Exploits0References1
Cvelist
Cvelist
added 4 days ago23 views

CVE-2026-50428 Windows Container Isolation FS Filter Driver (unionfs.sys) Information Disclosure Vulnerability

...

7.1CVSS0.00302EPSS
Exploits0References1
CVE
CVE
added 4 days ago7 views

CVE-2026-50428

The CVE-2026-50428 entry concerns an Out-of-bounds read in Windows Container Isolation FS Filter Driver (unionfs.sys) that enables a locally authorized attacker to disclose information (information disclosure). The issue affects the Windows Container Isolation FS Filter Driver path and is confirm...

7.1CVSS6AI score0.00302EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 4 days ago3 views

CVE-2026-50428 Windows Container Isolation FS Filter Driver (unionfs.sys) Information Disclosure Vulnerability

...

7.1CVSS6.1AI score0.00302EPSS
Exploits0References1
Microsoft CVE
Microsoft CVE
added 4 days ago6 views

Windows Container Isolation FS Filter Driver (unionfs.sys) Information Disclosure Vulnerability

Out-of-bounds read in Windows Container Isolation FS Filter Driver unionfs.sys allows an authorized attacker to disclose information locally...

7.1CVSS6.1AI score0.00302EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2026/06/17 12:0 a.m.24 views

PT-2026-50567

Name of the Vulnerable Software and Affected Versions Steeltoe.Configuration.Abstractions versions 4.0.0 through 4.1.0 Description When MySQL or PostgreSQL service bindings from VCAP SERVICES include TLS client credentials, the Connectors library writes these credentials to temporary files in...

4.7CVSS5.9AI score0.00065EPSS
Exploits0References9
NVD
NVD
added 2026/06/10 11:16 p.m.14 views

CVE-2026-46695

Boxlite is a sandbox service that allows users to create lightweight virtual machines Boxes and launch OCI containers within them to run untrusted code. Prior to version 0.9.0, Boxlite does not restrict the kernel capabilities available inside the container, malicious code can remount the directo...

10CVSS0.00289EPSS
Exploits0References3
GithubExploit
GithubExploit
added 2026/06/02 3:8 p.m.97 views

Exploit for Out-of-bounds Write in Linux Linux_Kernel

Charantej Architecture: Hardened Container Staging & Syscall T...

7.8CVSS6.2AI score0.03663EPSS
Exploits11
NVD
NVD
added 2026/05/29 6:17 p.m.29 views

CVE-2026-45661

Dokploy is a free, self-hostable Platform as a Service PaaS. In 0.26.5 and earlier, a critical path traversal vulnerability exists in Dokploy v0.26.5 that allows authenticated users to write arbitrary files to the filesystem during application deployment. When combined with Dokploy's remote serve...

9.9CVSS0.0066EPSS
Exploits0References1
EUVD
EUVD
added 2026/05/29 4:7 p.m.14 views

EUVD-2026-33352

Dokploy is a free, self-hostable Platform as a Service PaaS. In 0.26.5 and earlier, a critical path traversal vulnerability exists in Dokploy v0.26.5 that allows authenticated users to write arbitrary files to the filesystem during application deployment. When combined with Dokploy's remote serve...

9.9CVSS6.5AI score0.0066EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/05/29 4:7 p.m.13 views

CVE-2026-45661

Dokploy is a free, self-hostable Platform as a Service PaaS. In 0.26.5 and earlier, a critical path traversal vulnerability exists in Dokploy v0.26.5 that allows authenticated users to write arbitrary files to the filesystem during application deployment. When combined with Dokploy's remote serve...

9.9CVSS6.5AI score0.0066EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2026/05/29 4:7 p.m.15 views

CVE-2026-45661 Dokploy: Remote Code Execution through Path Traversal

Dokploy is a free, self-hostable Platform as a Service PaaS. In 0.26.5 and earlier, a critical path traversal vulnerability exists in Dokploy v0.26.5 that allows authenticated users to write arbitrary files to the filesystem during application deployment. When combined with Dokploy's remote serve...

9.9CVSS6.5AI score0.0066EPSS
Exploits0References1
OSV
OSV
added 2026/05/29 4:7 p.m.3 views

CVE-2026-45661 Dokploy: Remote Code Execution through Path Traversal

Dokploy is a free, self-hostable Platform as a Service PaaS. In 0.26.5 and earlier, a critical path traversal vulnerability exists in Dokploy v0.26.5 that allows authenticated users to write arbitrary files to the filesystem during application deployment. When combined with Dokploy's remote serve...

9.9CVSS6.7AI score0.0066EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/05/29 12:0 a.m.22 views

PT-2026-44938

Name of the Vulnerable Software and Affected Versions Dokploy versions prior to 0.26.6 Description Dokploy is a self-hostable Platform as a Service PaaS containing a path traversal issue. This allows authenticated users to write arbitrary files to the filesystem during application deployment. Whe...

9.9CVSS6.5AI score0.0066EPSS
Exploits0References4
EUVD
EUVD
added 2026/05/22 6:32 p.m.15 views

EUVD-2026-31484

The Docker CLI --use-api-socket flag bypasses Enhanced Container Isolation ECI restrictions in Docker Desktop. When ECI is enabled, Docker socket mounts from containers are denied unless explicitly allowed via the admin-settings configuration. However, the --use-api-socket flag adds the Docker...

8.8CVSS5.8AI score0.00211EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/05/22 6:32 p.m.9 views

CVE-2026-6406 Docker Desktop Enhanced Container Isolation bypass via --use-api-socket CLI flag

The Docker CLI --use-api-socket flag bypasses Enhanced Container Isolation ECI restrictions in Docker Desktop. When ECI is enabled, Docker socket mounts from containers are denied unless explicitly allowed via the admin-settings configuration. However, the --use-api-socket flag adds the Docker...

8.8CVSS7.3AI score0.00211EPSS
Exploits0References2
CVE
CVE
added 2026/05/22 6:32 p.m.74 views

CVE-2026-6406

CVE-2026-6406 describes a local privilege-escalation in Docker Desktop via Enhanced Container Isolation (ECI). When ECI is enabled, container-originated Docker socket mounts are denied unless explicitly allowed; however, the Docker CLI flag --use-api-socket mounts the Docker socket using HostConf...

8.8CVSS7.3AI score0.00211EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2026/05/22 6:32 p.m.24 views

CVE-2026-6406 Docker Desktop Enhanced Container Isolation bypass via --use-api-socket CLI flag

The Docker CLI --use-api-socket flag bypasses Enhanced Container Isolation ECI restrictions in Docker Desktop. When ECI is enabled, Docker socket mounts from containers are denied unless explicitly allowed via the admin-settings configuration. However, the --use-api-socket flag adds the Docker...

8.8CVSS0.00211EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/05/22 6:32 p.m.8 views

CVE-2026-6406

The Docker CLI --use-api-socket flag bypasses Enhanced Container Isolation ECI restrictions in Docker Desktop. When ECI is enabled, Docker socket mounts from containers are denied unless explicitly allowed via the admin-settings configuration. However, the --use-api-socket flag adds the Docker...

8.8CVSS7.3AI score0.00211EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder