Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2025/07/25 2:29 p.m.4 views

CVE-2017-20198

The Marathon UI in DC/OS 1.9.0 allows unauthenticated users to deploy arbitrary Docker containers. Due to improper restriction of volume mount configurations, attackers can deploy a container that mounts the host's root filesystem / with read/write privileges. When using a malicious Docker image,...

9.3CVSS8AI score0.0076EPSS
Exploits0References1
NVD
NVD
added 2025/07/23 2:15 p.m.6 views

CVE-2017-20198

The Marathon UI in DC/OS 1.9.0 allows unauthenticated users to deploy arbitrary Docker containers. Due to improper restriction of volume mount configurations, attackers can deploy a container that mounts the host's root filesystem / with read/write privileges. When using a malicious Docker image,...

9.3CVSS0.0076EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2025/07/23 1:50 p.m.4 views

CVE-2017-20198 DC/OS Marathon UI < 1.9.0 Unauthenticated RCE via Docker Mount Abuse

The Marathon UI in DC/OS 1.9.0 allows unauthenticated users to deploy arbitrary Docker containers. Due to improper restriction of volume mount configurations, attackers can deploy a container that mounts the host's root filesystem / with read/write privileges. When using a malicious Docker image,...

9.3CVSS7.3AI score0.0076EPSS
Exploits0References5
Cvelist
Cvelist
added 2025/07/23 1:50 p.m.11 views

CVE-2017-20198 DC/OS Marathon UI < 1.9.0 Unauthenticated RCE via Docker Mount Abuse

The Marathon UI in DC/OS 1.9.0 allows unauthenticated users to deploy arbitrary Docker containers. Due to improper restriction of volume mount configurations, attackers can deploy a container that mounts the host's root filesystem / with read/write privileges. When using a malicious Docker image,...

9.3CVSS0.0076EPSS
Exploits0References5
CVE
CVE
added 2025/07/23 1:50 p.m.16 views

CVE-2017-20198

CVE-2017-20198 affects DC/OS Marathon UI

9.3CVSS7.3AI score0.0076EPSS
Exploits0References5
Circl
Circl
added 2018/05/29 3:50 p.m.4 views

CVE-2017-20198

creationtimestamp| type| source ---|---|--- 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/linux/http/dcosmarathon.rb 2025-10-23 21:12:58+00:00| seen| MISP/a9d21043-f825-4bac-8d2b-56fb9e8343e7...

9.3CVSS5.7AI score0.0076EPSS
Exploits0References1
Rows per page
Query Builder