Lucene search
K

27 matches found

Fedora
Fedora
added 2026/06/27 1:12 a.m.6 views

[SECURITY] Fedora 44 Update: docker-buildx-0.35.0-1.fc44

Docker CLI plugin for extended build capabilities with BuildKit...

8.8CVSS6.3AI score0.004EPSS
Exploits0
Fedora
Fedora
added 2026/06/27 12:57 a.m.4 views

[SECURITY] Fedora 43 Update: docker-buildx-0.35.0-1.fc43

Docker CLI plugin for extended build capabilities with BuildKit...

8.8CVSS6.3AI score0.004EPSS
Exploits0
CVE
CVE
added 2026/05/29 4:3 p.m.18 views

CVE-2026-45663

Dokploy (PaaS) contains a command injection vulnerability in the Docker file upload flow prior to 0.29.1. The destinationPath parameter is not sanitized and is interpolated into a shell command, allowing an authenticated user who uploads a file to a container to inject shell metacharacters (e.g.,...

9.9CVSS6.1AI score0.00866EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/05/22 6:32 p.m.7 views

CVE-2026-6406

The Docker CLI --use-api-socket flag bypasses Enhanced Container Isolation ECI restrictions in Docker Desktop. When ECI is enabled, Docker socket mounts from containers are denied unless explicitly allowed via the admin-settings configuration. However, the --use-api-socket flag adds the Docker...

8.8CVSS7.3AI score0.00211EPSS
Exploits0References3Affected Software1
Fedora
Fedora
added 2026/04/25 1:57 a.m.5 views

[SECURITY] Fedora 44 Update: podman-5.8.2-1.fc44

podman Pod Manager is a fully featured container engine that is a simple daemonless tool. podman provides a Docker-CLI comparable command line that eases the transition from other container engines and allows the management of pods, containers and images. Simply put: alias docker=3Dpodman. Most...

7.5CVSS6.2AI score0.00651EPSS
Exploits0
Github Security Blog
Github Security Blog
added 2026/03/05 12:10 a.m.13 views

Docker CLI Plugins: Uncontrolled Search Path Element Leads to Local Privilege Escalation on Windows

This issue affects Docker CLI through 29.1.5 Impact Docker CLI for Windows searches for plugin binaries in C:\ProgramData\Docker\cli-plugins, a directory that does not exist by default. A low-privileged attacker can create this directory and place malicious CLI plugin binaries docker-compose.exe,...

8CVSS6AI score0.00472EPSS
Exploits0References8Affected Software1
EUVD
EUVD
added 2026/03/05 12:10 a.m.10 views

EUVD-2025-208275

Docker CLI Plugins: Uncontrolled Search Path Element Leads to Local Privilege Escalation on Windows...

7CVSS5.9AI score0.00472EPSS
Exploits0References7
OSV
OSV
added 2026/03/05 12:10 a.m.3 views

GHSA-P436-GJF2-799P Docker CLI Plugins: Uncontrolled Search Path Element Leads to Local Privilege Escalation on Windows

This issue affects Docker CLI through 29.1.5 Impact Docker CLI for Windows searches for plugin binaries in C:\ProgramData\Docker\cli-plugins, a directory that does not exist by default. A low-privileged attacker can create this directory and place malicious CLI plugin binaries docker-compose.exe,...

7CVSS6AI score0.00472EPSS
Exploits0References8
Fedora
Fedora
added 2025/10/25 9:17 p.m.6 views

[SECURITY] Fedora 43 Update: docker-buildx-0.29.1-1.fc43

Docker CLI plugin for extended build capabilities with BuildKit...

6.5CVSS7AI score0.00489EPSS
Exploits1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2021-7951

Malicious code in bioql PyPI...

8.4CVSS7.7AI score0.01757EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.19 views

EUVD-2022-4041

Malicious code in bioql PyPI...

8.5CVSS7.5AI score0.01795EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-6988

Malicious code in bioql PyPI...

9.9CVSS9AI score0.01474EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2025/08/18 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2021-41092

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Docker CLI is the command line interface for the docker container runtime. A bug was found in the Docker CLI where running docker login...

7.5CVSS6.1AI score0.01536EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/02/05 7:32 p.m.10 views

CVE-2022-39321

GitHub Actions Runner is the application that runs a job from a GitHub Actions workflow. The actions runner invokes the docker cli directly in order to run job containers, service containers, or container actions. A bug in the logic for how the environment is encoded into these docker commands wa...

9.9CVSS7AI score0.01474EPSS
Exploits0References1
OSV
OSV
added 2022/10/25 7:54 p.m.24 views

GHSA-2C6M-6GQH-6QG3 Docker Command Escaping in the GitHub Actions Runner

Impact The actions runner invokes the docker cli directly in order to run job containers, service containers, or container actions. A bug in the logic for how the environment is encoded into these docker commands was discovered that allows an input to escape the environment variable and modify th...

8.8CVSS9.5AI score0.01474EPSS
Exploits0References5
Prion
Prion
added 2022/10/25 5:15 p.m.22 views

Command injection

GitHub Actions Runner is the application that runs a job from a GitHub Actions workflow. The actions runner invokes the docker cli directly in order to run job containers, service containers, or container actions. A bug in the logic for how the environment is encoded into these docker commands wa...

6.5CVSS9.6AI score0.01474EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichment
added 2022/10/25 12:0 a.m.9 views

CVE-2022-39321 GitHub Actions Runner vulnerable to Docker Command Escaping

GitHub Actions Runner is the application that runs a job from a GitHub Actions workflow. The actions runner invokes the docker cli directly in order to run job containers, service containers, or container actions. A bug in the logic for how the environment is encoded into these docker commands wa...

8.8CVSS9.7AI score0.01474EPSS
Exploits0References3
CNNVD
CNNVD
added 2022/10/25 12:0 a.m.6 views

GitHub Actions Runner 操作系统命令注入漏洞

GitHub Actions Runner is an application that runs jobs from a GitHub Actions workflow. A security vulnerability exists in GitHub Actions Runner that stems from the presence of a logic error that allows input to escape an environment variable and directly modify that docker command call, Jobs that...

9.9CVSS8.1AI score0.01474EPSS
Exploits0References4
Cvelist
Cvelist
added 2022/10/25 12:0 a.m.55 views

CVE-2022-39321 GitHub Actions Runner vulnerable to Docker Command Escaping

GitHub Actions Runner is the application that runs a job from a GitHub Actions workflow. The actions runner invokes the docker cli directly in order to run job containers, service containers, or container actions. A bug in the logic for how the environment is encoded into these docker commands wa...

8.8CVSS10AI score0.01474EPSS
Exploits0References3
CNNVD
CNNVD
added 2022/07/07 12:0 a.m.3 views

Dell EMC PowerProtect 安全漏洞

Dell EMC PowerProtect is a software application from Dell, Inc. It is used by the company to protect, manage and recover its most critical application data. A security vulnerability exists in Dell EMC PowerProtect Cyber Recovery versions prior to 19.11, which originates from an authenticated,...

7.8CVSS7.5AI score0.00243EPSS
Exploits0References2
Rows per page
Query Builder