Input validation

An issue was discovered in Espressif ESP-IDF 2.x and 3.x before 3.0.6 and 3.1.x before 3.1.1. Insufficient validation of input data in the 2nd stage bootloader allows a physically proximate attacker to bypass secure boot checks and execute arbitrary code, by crafting an application binary that...

Exploit for OS Command Injection in Docker

Usage Edit HOST inside payload.c, compile with make. Start...

DEBIAN-CVE-2019-5736

runc through 1.0-rc6, as used in Docker before 18.09.2 and other products, allows attackers to overwrite the host runc binary and consequently obtain host root access by leveraging the ability to execute a command as root within one of these types of containers: 1 a new container with an...

ALPINE-CVE-2019-5736

runc through 1.0-rc6, as used in Docker before 18.09.2 and other products, allows attackers to overwrite the host runc binary and consequently obtain host root access by leveraging the ability to execute a command as root within one of these types of containers: 1 a new container with an...

runc: Execution of malicious containers allows for container escape and access to host filesystem

A flaw was found in the way runc handled system file descriptors when running containers. A malicious container could use this flaw to overwrite contents of the runc binary and consequently run arbitrary commands on the container host system...

Cisco IOS XR Software Elevation of Privilege Vulnerability

Cisco IOS XR Software is the United States Cisco Cisco company's IOS software series including IOS T, IOS S and IOS XR in a fully modular, distributed network operating system. A privilege-lifting vulnerability exists in the CLL in Cisco IOS XR Software, which stems from the program failing to...