Lucene search
K

8 matches found

OPENSUSE Linux
OPENSUSE Linux
added 2025/10/01 12:0 a.m.3 views

docker-stable-24.0.9_ce-15.1 on GA media (moderate)

docker-stable-24.0.9ce-15.1 on GA media Announcement ID: openSUSE-SU-2025:15589-1 Rating: moderate Cross-References: CVE-2014-3499 CVE-2014-5277 CVE-2014-6407 CVE-2014-6408 CVE-2014-8178 CVE-2014-8179 CVE-2014-9356 CVE-2014-9357 CVE-2014-9358 CVE-2015-3627 CVE-2015-3629 CVE-2015-3630 CVE-2015-363...

8.3CVSS8.4AI score0.66252EPSS
Exploits11
seebug.org
seebug.org
added 2016/01/13 12:0 a.m.63 views

docker 1.0.0 docker.socket world accessible

CVE-2014-3499 docker.socket world accessible 漏洞类型 设计错误 本地权限提升 漏洞分析 Docker 1.0.0使用全局可读可写的管理套接字,这种设计会允许本地用户利用写套接字,获得特殊的权限。 具体分析 docker.socket 在docker 1.0.0版本时,并没有限制读写socket的权限,导致本地用户任何socket读写都能够完成。 本地用户使用构造的恶意请求写入到socket中会导致root权限执行任意代码。 具体过程 在init/systemd中,...

7.2CVSS8.6AI score0.00393EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2014/11/08 12:0 a.m.34 views

RHEL 7 : docker (RHSA-2014:0820)

An updated docker package that fixes one security issue is now available for Red Hat Enterprise Linux 7 Extras. The Red Hat Security Response Team has rated this update as having Important security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

7.2CVSS7AI score0.00393EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2014/07/15 12:0 a.m.22 views

Fedora Update for docker-io FEDORA-2014-8034

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.2CVSS6.5AI score0.00393EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2014/07/14 12:0 a.m.23 views

Fedora 20 : docker-io-1.0.0-6.fc20 (2014-8021)

Resolves: rhbz1114810 - CVE-2014-3499 correct bz Set mode,user,group in docker.socket file Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible...

7.2CVSS7.2AI score0.00393EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2014/07/14 12:0 a.m.28 views

Fedora 19 : docker-io-1.0.0-6.fc19 (2014-8034)

Resolves: rhbz1114810 - CVE-2014-3499 correct bz Set mode,user,group in docker.socket file Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible...

7.2CVSS7.2AI score0.00393EPSS
Exploits1References3
NVD
NVD
added 2014/07/11 2:55 p.m.26 views

CVE-2014-3499

Docker 1.0.0 uses world-readable and world-writable permissions on the management socket, which allows local users to gain privileges via unspecified vectors...

7.2CVSS6.3AI score0.00393EPSS
Exploits1References2
CVE
CVE
added 2014/07/11 2:0 p.m.87 views

CVE-2014-3499

Technical details beyond the general description for CVE-2014-3499 are not provided in the connected documents. Monitor for updates from OSV/OpenVAS/Nessus entries for affected products and fixes.

7.2CVSS6.3AI score0.00393EPSS
Exploits1References2Affected Software2
Rows per page
Query Builder