Lucene search
K

150 matches found

CVE
CVE
added 2024/10/01 6:52 p.m.350 views

CVE-2024-9341

CVE-2024-9341 is a vulnerability in the containers/common Go library that can occur when FIPS mode is enabled, enabling symbolic-link-based mounting to trick the host into mounting sensitive host directories inside a container and potentially accessing host files. Related advisories indicate affe...

8.2CVSS5.4AI score0.00969EPSS
Exploits0References17Affected Software1
Redos
Redos
added 2024/05/03 12:0 a.m.19 views

ROS-20240503-09

Vulnerability in the IPv6 implementation of the container isolation software tool Moby is related to disclosure of information in an erroneous data area. Exploitation of the vulnerability could allow an attacker to obtain sensitive information...

6.5CVSS6.2AI score0.00353EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2024/04/26 12:0 a.m.5 views

The vulnerability of the IPv6 protocol implementation in the software environment for creating containerized systems called Moby allows a attacker to obtain confidential information.

The vulnerability of the IPv6 protocol implementation for the Moby container isolation system is related to the disclosure of information in the erroneous data field. Exploiting this vulnerability can allow an attacker to obtain confidential information...

4.7CVSS5.7AI score0.00353EPSS
Exploits0References8Affected Software4
BDU FSTEC
BDU FSTEC
added 2024/03/29 12:0 a.m.5 views

The vulnerability of the Moby container isolation system creation software lies in the lack of proper validation for the incoming requests. This allows a malicious actor to gain unauthorized access to protected information.

The vulnerability of the Moby container isolation system creation software lies in the lack of checks for the correctness of the requests received. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected information...

5.9CVSS6.4AI score0.0075EPSS
Exploits0References9Affected Software5
NVD
NVD
added 2023/09/25 4:15 p.m.31 views

CVE-2023-5165

Docker Desktop before 4.23.0 allows an unprivileged user to bypass Enhanced Container Isolation ECI restrictions via the debug shell which remains accessible for a short time window after launching Docker Desktop. The affected functionality is available for Docker Business customers only and...

8.8CVSS7.4AI score0.00225EPSS
Exploits0References1
OSV
OSV
added 2023/09/25 4:15 p.m.6 views

CVE-2023-5165

Docker Desktop before 4.23.0 allows an unprivileged user to bypass Enhanced Container Isolation ECI restrictions via the debug shell which remains accessible for a short time window after launching Docker Desktop. The affected functionality is available for Docker Business customers only and...

8.8CVSS5.7AI score0.00225EPSS
Exploits0References1
Prion
Prion
added 2023/09/25 4:15 p.m.23 views

Design/Logic Flaw

Docker Desktop before 4.23.0 allows an unprivileged user to bypass Enhanced Container Isolation ECI restrictions via the debug shell which remains accessible for a short time window after launching Docker Desktop. The affected functionality is available for Docker Business customers only and...

4.3CVSS8.5AI score0.00225EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2023/09/25 12:0 a.m.11 views

PT-2023-5446 · Docker · Docker Desktop

Name of the Vulnerable Software and Affected Versions: Docker Desktop versions 4.13.0 through 4.22.x Description: The issue is related to insufficient authorization procedures in Docker Desktop, allowing an unprivileged user to bypass Enhanced Container Isolation ECI restrictions. This can be...

8.8CVSS8.4AI score0.00225EPSS
Exploits0References5
CNNVD
CNNVD
added 2023/09/25 12:0 a.m.7 views

Docker Desktop Security Vulnerabilities

Docker Desktop is a container technology-based desktop software for lightweight deployment of applications from the U.S. company Docker. The product provides a desktop environment that supports creating a container lightweight virtual machine and deploying and running applications on...

8.8CVSS6.7AI score0.00225EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2023/09/24 12:9 a.m.14 views

CVE-2023-1636 Incomplete container isolation

A vulnerability was found in OpenStack Barbican containers. This vulnerability is only applicable to deployments that utilize an all-in-one configuration. Barbican containers share the same CGROUP, USER, and NET namespace with the host system and other OpenStack services. If any service is...

6CVSS7.2AI score0.0048EPSS
Exploits0References2
The Hacker News
The Hacker News
added 2023/08/30 5:4 p.m.69 views

Hackers Can Exploit Windows Container Isolation Framework to Bypass Endpoint Security

New findings show that malicious actors could leverage a sneaky malware detection evasion technique and bypass endpoint security solutions by manipulating the Windows Container Isolation Framework. The findings were presented by Deep Instinct security researcher Daniel Avinoam at the DEF CON...

6.8AI score
Exploits0
Vulnrichment
Vulnrichment
added 2023/04/26 2:9 a.m.9 views

CVE-2022-41739 IBM Spectrum Scale privilege escalation

IBM Spectrum Scale IBM Spectrum Scale Container Native Storage Access 5.1.2.1 through 5.1.6.0 could allow programs running inside the container to overcome isolation mechanism and gain additional capabilities or access sensitive information on the host. IBM X-Force ID: 237815...

7.9CVSS7.8AI score0.00199EPSS
Exploits0References2
CNNVD
CNNVD
added 2023/04/21 12:0 a.m.6 views

barbican 安全漏洞

barbican is an OpenStack key management service, API server. A security vulnerability exists in barbican that stems from a container isolation flaw in Red Hat OpenStack that allows an attacker to have limited authentication and access to the Barbican container, potentially allowing access to othe...

6CVSS5.7AI score0.0048EPSS
Exploits0References4
OSV
OSV
added 2023/03/13 12:15 p.m.3 views

CVE-2023-0629

Docker Desktop before 4.17.0 allows an unprivileged user to bypass Enhanced Container Isolation ECI restrictions by setting the Docker host to docker.raw.sock, or npipe:////.pipe/dockerenginelinux on Windows, via the -H --host CLI flag or the DOCKERHOST environment variable and launch containers...

7.1CVSS7AI score0.00218EPSS
Exploits0References1
NVD
NVD
added 2023/03/13 12:15 p.m.26 views

CVE-2023-0629

Docker Desktop before 4.17.0 allows an unprivileged user to bypass Enhanced Container Isolation ECI restrictions by setting the Docker host to docker.raw.sock, or npipe:////.pipe/dockerenginelinux on Windows, via the -H --host CLI flag or the DOCKERHOST environment variable and launch containers...

7.1CVSS6.9AI score0.00218EPSS
Exploits0References1
Prion
Prion
added 2023/03/13 12:15 p.m.20 views

Design/Logic Flaw

Docker Desktop before 4.17.0 allows an unprivileged user to bypass Enhanced Container Isolation ECI restrictions by setting the Docker host to docker.raw.sock, or npipe:////.pipe/dockerenginelinux on Windows, via the -H --host CLI flag or the DOCKERHOST environment variable and launch containers...

3.2CVSS6.9AI score0.00218EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/03/13 11:16 a.m.9 views

CVE-2023-0629 Docker Desktop before 4.17.0 allows an unprivileged user to bypass Enhanced Container Isolation restrictions via the raw Docker socket and launch privileged containers

Docker Desktop before 4.17.0 allows an unprivileged user to bypass Enhanced Container Isolation ECI restrictions by setting the Docker host to docker.raw.sock, or npipe:////.pipe/dockerenginelinux on Windows, via the -H --host CLI flag or the DOCKERHOST environment variable and launch containers...

7.1CVSS7AI score0.00218EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/03/13 11:16 a.m.24 views

CVE-2023-0629 Docker Desktop before 4.17.0 allows an unprivileged user to bypass Enhanced Container Isolation restrictions via the raw Docker socket and launch privileged containers

Docker Desktop before 4.17.0 allows an unprivileged user to bypass Enhanced Container Isolation ECI restrictions by setting the Docker host to docker.raw.sock, or npipe:////.pipe/dockerenginelinux on Windows, via the -H --host CLI flag or the DOCKERHOST environment variable and launch containers...

7.1CVSS7.1AI score0.00218EPSS
Exploits0References1
CVE
CVE
added 2023/03/13 11:16 a.m.85 views

CVE-2023-0629

Summary: CVE-2023-0629 affects Docker Desktop prior to 4.17.0, where an unprivileged user can bypass Enhanced Container Isolation (ECI) by setting the Docker host to docker.raw.sock or npipe:////.pipe/docker_engine_linux (Windows) via -H/DOCKER_HOST, allowing containers to run with reduced harden...

7.1CVSS6.9AI score0.00218EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2023/03/13 12:0 a.m.4 views

PT-2023-1878 · Docker · Docker Desktop

Name of the Vulnerable Software and Affected Versions: Docker Desktop versions 4.13.0 through 4.16.x Description: The issue allows an unprivileged user to bypass Enhanced Container Isolation ECI restrictions by setting the Docker host to docker.raw.sock or npipe:////.pipe/docker engine linux on...

7.1CVSS6.9AI score0.00218EPSS
Exploits0References4
Rows per page
Query Builder