Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

340 matches found

Prion
Prionadded 2023/04/04 10:15 p.m.24 views

Design/Logic Flaw

Moby is an open source container framework developed by Docker Inc. that is distributed as Docker, Mirantis Container Runtime, and various other downstream projects/products. The Moby daemon component dockerd, which is developed as moby/moby is commonly referred to as Docker. Swarm Mode, which is...

2.6CVSS6.8AI score0.0144EPSS
Exploits0References8Affected Software1
Prion
Prionadded 2023/04/04 10:15 p.m.25 views

Code injection

Moby is an open source container framework developed by Docker Inc. that is distributed as Docker, Mirantis Container Runtime, and various other downstream projects/products. The Moby daemon component dockerd, which is developed as moby/moby is commonly referred to as Docker. Swarm Mode, which is...

2.6CVSS6.6AI score0.00696EPSS
Exploits1References11Affected Software1
Prion
Prionadded 2023/04/04 10:15 p.m.21 views

Design/Logic Flaw

Moby is an open source container framework developed by Docker Inc. that is distributed as Docker, Mirantis Container Runtime, and various other downstream projects/products. The Moby daemon component dockerd, which is developed as moby/moby, is commonly referred to as Docker. Swarm Mode, which i...

4CVSS7.8AI score0.02733EPSS
Exploits1References10Affected Software1
Debian CVE
Debian CVEadded 2023/04/04 9:13 p.m.33 views

CVE-2023-28840

Moby is an open source container framework developed by Docker Inc. that is distributed as Docker, Mirantis Container Runtime, and various other downstream projects/products. The Moby daemon component dockerd, which is developed as moby/moby, is commonly referred to as Docker. Swarm Mode, which i...

8.7CVSS7.5AI score0.02733EPSS
Exploits1
Debian CVE
Debian CVEadded 2023/04/04 9:7 p.m.31 views

CVE-2023-28842

Moby is an open source container framework developed by Docker Inc. that is distributed as Docker, Mirantis Container Runtime, and various other downstream projects/products. The Moby daemon component dockerd, which is developed as moby/moby is commonly referred to as Docker. Swarm Mode, which is...

6.8CVSS7AI score0.0144EPSS
Exploits0
CVE
CVEadded 2023/04/04 9:7 p.m.739 views

CVE-2023-28842

CVE-2023-28842 affects Moby/dockerd, specifically Swarm overlay with encrypted VXLAN: an endpoint on an encrypted overlay can be unauthenticated, allowing cleartext VXLAN traffic to be injected or leaked under certain conditions. The issue stems from how iptables rules and IPsec handling are appl...

6.8CVSS7.6AI score0.0144EPSS
Exploits0References8Affected Software1
OSV
OSVadded 2023/04/04 9:7 p.m.40 views

CVE-2023-28842 moby/moby's dockerd daemon encrypted overlay network with a single endpoint is unauthenticated

Moby is an open source container framework developed by Docker Inc. that is distributed as Docker, Mirantis Container Runtime, and various other downstream projects/products. The Moby daemon component dockerd, which is developed as moby/moby is commonly referred to as Docker. Swarm Mode, which is...

6.8CVSS7.2AI score0.0144EPSS
Exploits0References10
Positive Technologies
Positive Technologiesadded 2023/04/04 12:0 a.m.4 views

PT-2023-4601 · Mirantis +7 · Mirantis Container Runtime +8

Name of the Vulnerable Software and Affected Versions: Moby versions prior to 23.0.3 Moby versions prior to 20.10.24 Mirantis Container Runtime versions prior to 20.10.16 Description: The issue is related to the encrypted overlay network feature in Moby's Swarm Mode. Encrypted overlay networks...

10CVSS5.9AI score0.02733EPSS
Exploits2References104
Tenable Nessus
Tenable Nessusadded 2023/04/04 12:0 a.m.109 views

Amazon Linux 2023 : containerd, containerd-stress (ALAS2023-2023-156)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2023-156 advisory. containerd is an open source container runtime. A bug was found in containerd's CRI implementation where a user can exhaust memory on the host. In the CRI stream server, a goroutine is launched...

7.8CVSS7.2AI score0.01022EPSS
Exploits1References8
Tenable Nessus
Tenable Nessusadded 2023/03/20 12:0 a.m.32 views

CBL Mariner 2.0 Security Update: moby-containerd (CVE-2021-41103)

The version of moby-containerd installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2021-41103 advisory. - containerd is an open source container runtime with an emphasis on simplicity, robustness and...

7.8CVSS6.5AI score0.00482EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2023/03/20 12:0 a.m.34 views

CBL Mariner 2.0 Security Update: moby-containerd (CVE-2022-23471)

The version of moby-containerd installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-23471 advisory. - containerd is an open source container runtime. A bug was found in containerd's CRI implementation...

6.5CVSS7.3AI score0.01022EPSS
Exploits0References2
OpenVAS
OpenVASadded 2023/03/17 12:0 a.m.27 views

Fedora: Security Advisory for containerd (FEDORA-2023-05b39bc048)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.1AI score0.00542EPSS
Exploits1References2
Fedora
Fedoraadded 2023/03/16 6:33 p.m.64 views

[SECURITY] Fedora 37 Update: containerd-1.6.19-1.fc37

Containerd is an industry-standard container runtime with an emphasis on simplicity, robustness and portability. It is available as a daemon for Linux and Windows, which can manage the complete container lifecycle of its host system: image transfer and storage, container execution and supervision...

7.8CVSS7.1AI score0.00542EPSS
Exploits1
Fedora
Fedoraadded 2023/03/16 6:20 p.m.43 views

[SECURITY] Fedora 36 Update: containerd-1.6.19-1.fc36

Containerd is an industry-standard container runtime with an emphasis on simplicity, robustness and portability. It is available as a daemon for Linux and Windows, which can manage the complete container lifecycle of its host system: image transfer and storage, container execution and supervision...

7.8CVSS7.1AI score0.00542EPSS
Exploits1
Tenable Nessus
Tenable Nessusadded 2023/03/16 12:0 a.m.36 views

Fedora 36 : containerd (2023-aadd08ab96)

The remote Fedora 36 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-aadd08ab96 advisory. Update containerd to 1.16.19 - Mitigates CVE-2023-25153 / GHSA-259w-8hf6-59c2 - Mitigates CVE-2023-25173 / GHSA-hmfx-3pcx-653p Tenable has extracted...

7.8CVSS7AI score0.00542EPSS
Exploits1References3
Fedora
Fedoraadded 2023/03/11 4:7 a.m.41 views

[SECURITY] Fedora 38 Update: containerd-1.6.19-1.fc38

Containerd is an industry-standard container runtime with an emphasis on simplicity, robustness and portability. It is available as a daemon for Linux and Windows, which can manage the complete container lifecycle of its host system: image transfer and storage, container execution and supervision...

7.8CVSS7.1AI score0.00542EPSS
Exploits1
CNNVD
CNNVDadded 2023/03/03 12:0 a.m.3 views

runc 安全漏洞

runc is a CLI Command Line Interface tool for generating and running containers according to the OCI specification. A security vulnerability exists in runc version 1.1.4 and earlier versions that stems from incorrect access control. An attacker can exploit the vulnerability to escalate privileges...

7CVSS7AI score0.00448EPSS
Exploits1References17
AlpineLinux
AlpineLinuxadded 2023/02/16 2:9 p.m.56 views

CVE-2023-25173

containerd is an open source container runtime. A bug was found in containerd prior to versions 1.6.18 and 1.5.18 where supplementary groups are not set up properly inside a container. If an attacker has direct access to a container and manipulates their supplementary group access, they may be ab...

7.8CVSS7.2AI score0.00542EPSS
Exploits1
UbuntuCve
UbuntuCveadded 2023/02/16 12:0 a.m.358 views

CVE-2023-25173

containerd is an open source container runtime. A bug was found in containerd prior to versions 1.6.18 and 1.5.18 where supplementary groups are not set up properly inside a container. If an attacker has direct access to a container and manipulates their supplementary group access, they may be ab...

7.8CVSS6.7AI score0.00542EPSS
Exploits1References3
SUSE CVE
SUSE CVEadded 2023/02/15 5:4 a.m.1 views

SUSE CVE-2016-3697

libcontainer/user/user.go in runC before 0.1.0, as used in Docker before 1.11.2, improperly treats a numeric UID as a potential username, which allows local users to gain privileges via a numeric username in the password file in a container...

7.8CVSS7.2AI score0.00388EPSS
Exploits0References6
Rows per page
Query Builder