Lucene search
K

5 matches found

Tenable Nessus
Tenable Nessus
added 2018/09/07 12:0 a.m.36 views

Docker for Windows stable < 18.06.0-ce-win70 / edge < 18.06.0-ce-rc3-win68 Remote Privilege Escalation Vulnerability

The version of Docker for Windows installed on the remote Windows host is stable channel 18.06.0-ce-win70 or edge channel 18.06.0-ce-rc3-win68. It is, therefore, affected by a remote privilege escalation vulnerability. C Tenable Network Security, Inc. include'compat.inc'; if description...

8.8CVSS8AI score0.02467EPSS
Exploits2References4
OpenVAS
OpenVAS
added 2018/09/06 12:0 a.m.76 views

Docker for Windows Privilege Escalation Vulnerability (Aug 2018)

Docker for Windows is prone to a privilege escalation vulnerability. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

8.8CVSS8.9AI score0.02467EPSS
Exploits2References1
OSV
OSV
added 2018/09/01 1:29 a.m.16 views

CVE-2018-15514

HandleRequestAsync in Docker for Windows before 18.06.0-ce-rc3-win68 edge and before 18.06.0-ce-win72 stable deserialized requests over the \.\pipe\dockerBackend named pipe without verifying the validity of the deserialized .NET objects. This would allow a malicious user in the "docker-users"...

8.8CVSS7AI score
Exploits0References4
Cvelist
Cvelist
added 2018/09/01 1:0 a.m.21 views

CVE-2018-15514

HandleRequestAsync in Docker for Windows before 18.06.0-ce-rc3-win68 edge and before 18.06.0-ce-win72 stable deserialized requests over the \.\pipe\dockerBackend named pipe without verifying the validity of the deserialized .NET objects. This would allow a malicious user in the "docker-users"...

8.8AI score0.02467EPSS
Exploits2References4
CVE
CVE
added 2018/09/01 1:0 a.m.73 views

CVE-2018-15514

Docker for Windows is affected by CVE-2018-15514 due to HandleRequestAsync deserialization of untrusted data over the dockerBackend NamedPipe, allowing local privilege escalation to SYSTEM for users in the docker-users group. Affected builds are stable &lt; 18.06.0-ce-win70 and edge

8.8CVSS8.7AI score0.02467EPSS
Exploits2References4Affected Software1
Rows per page
Query Builder