Lucene search
K

144 matches found

RedhatCVE
RedhatCVE
added 2025/02/14 9:39 p.m.7 views

CVE-2025-0113

A problem with the network isolation mechanism of the Palo Alto Networks Cortex XDR Broker VM allows attackers unauthorized access to Docker containers from the host network used by Broker VM. This may allow access to read files sent for analysis and logs transmitted by the Cortex XDR Agent to th...

5.3CVSS6.6AI score0.00259EPSS
Exploits0References3
NVD
NVD
added 2025/02/12 9:15 p.m.8 views

CVE-2025-0113

A problem with the network isolation mechanism of the Palo Alto Networks Cortex XDR Broker VM allows attackers unauthorized access to Docker containers from the host network used by Broker VM. This may allow access to read files sent for analysis and logs transmitted by the Cortex XDR Agent to th...

5.3CVSS0.00259EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/02/12 9:5 p.m.16 views

CVE-2025-0113 Cortex XDR Broker VM: Unauthorized Access to Broker VM Docker Containers

A problem with the network isolation mechanism of the Palo Alto Networks Cortex XDR Broker VM allows attackers unauthorized access to Docker containers from the host network used by Broker VM. This may allow access to read files sent for analysis and logs transmitted by the Cortex XDR Agent to th...

5.3CVSS0.00259EPSS
Exploits0References1
CVE
CVE
added 2025/02/12 9:5 p.m.73 views

CVE-2025-0113

Summary: CVE-2025-0113 concerns the Palo Alto Networks Cortex XDR Broker VM where a flaw in the network isolation mechanism can let an attacker access Docker containers from the Broker VM’s host network, potentially reading analysis data and Cortex XDR logs. Affected component: Cortex XDR Broker ...

5.3CVSS6.5AI score0.00259EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/02/12 9:5 p.m.9 views

CVE-2025-0113 Cortex XDR Broker VM: Unauthorized Access to Broker VM Docker Containers

A problem with the network isolation mechanism of the Palo Alto Networks Cortex XDR Broker VM allows attackers unauthorized access to Docker containers from the host network used by Broker VM. This may allow access to read files sent for analysis and logs transmitted by the Cortex XDR Agent to th...

5.3CVSS6.5AI score0.00259EPSS
Exploits0References1
Palo Alto Networks
Palo Alto Networks
added 2025/02/12 5:0 p.m.19 views

Cortex XDR Broker VM: Unauthorized Access to Broker VM Docker Containers

A problem with the network isolation mechanism of the Palo Alto Networks Cortex XDR Broker VM allows attackers unauthorized access to Docker containers from the host network used by Broker VM. This may allow access to read files sent for analysis and logs transmitted by the Cortex XDR Agent to th...

5.3CVSS7AI score0.01025EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 2:24 a.m.13 views

CVE-2024-24760

mailcow is a dockerized email package, with multiple containers linked in one bridged network. A security vulnerability has been identified in mailcow affecting versions 2024-01c. This vulnerability potentially allows attackers on the same subnet to connect to exposed ports of a Docker container,...

8.8CVSS8.5AI score0.00868EPSS
Exploits0References1
Veracode
Veracode
added 2024/11/08 10:50 a.m.9 views

Privilege Escalation

github.com/rancher/rancher is vulnerable to Privilege Escalation. The vulnerability is due to the use of untrusted cluster or node drivers that run at a privileged level, allowing them to escape the chroot jail and gain unauthorized access to the Rancher container or, in the case of privileged...

9.1CVSS6.8AI score0.0073EPSS
Exploits0
NVD
NVD
added 2024/09/27 2:15 p.m.48 views

CVE-2024-47182

Dozzle is a realtime log viewer for docker containers. Before version 8.5.3, the app uses sha-256 as the hash for passwords, which leaves users susceptible to rainbow table attacks. The app switches to bcrypt, a more appropriate hash for passwords, in version 8.5.3...

7.5CVSS0.00208EPSS
Exploits0References2
WPVulnDB
WPVulnDB
added 2024/01/17 12:0 a.m.37 views

popup-builder < 4.2.6 - Admin+ SSRF & File Read

Description The plugin does not validate a parameter before making a request to it, which could allow users with the administrator role to perform SSRF attack in Multisite WordPress configurations. PoC 1. Create a multi-site wordpress setup, i.e. using docker-containers, and setup a second "site"...

6.5AI score0.00812EPSS
Exploits2Affected Software1
OSV
OSV
added 2023/12/08 8:8 p.m.24 views

CVE-2023-48311 Any image allowed by default

dockerspawner is a tool to spawn JupyterHub single user servers in Docker containers. Users of JupyterHub deployments running DockerSpawner starting with 0.11.0 without specifying DockerSpawner.allowedimages configuration allow users to launch any pullable docker image, instead of restricting to...

8CVSS5.8AI score0.00633EPSS
Exploits0References4
CVE
CVE
added 2023/12/08 8:8 p.m.55 views

CVE-2023-48311

CVE-2023-48311 affects dockerspawner for JupyterHub deployments. Versions 0.11.0 through 12 (and up to 13 in some advisories) permit users to launch any pullable Docker image when DockerSpawner.allowed_images is not explicitly restricted, instead of only the configured image. Root cause: misconfi...

8CVSS5.8AI score0.00633EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2023/12/08 8:8 p.m.40 views

CVE-2023-48311 Any image allowed by default

dockerspawner is a tool to spawn JupyterHub single user servers in Docker containers. Users of JupyterHub deployments running DockerSpawner starting with 0.11.0 without specifying DockerSpawner.allowedimages configuration allow users to launch any pullable docker image, instead of restricting to...

8CVSS7.9AI score0.00633EPSS
Exploits0References2
0day.today
0day.today
added 2023/12/07 12:0 a.m.474 views

ownCloud Phpinfo Reader Exploit

Docker containers of ownCloud compiled after February 2023, which have version 0.2.0 before 0.2.1 or 0.3.0 before 0.3.1 of the app graph installed contain a test file which prints phpinfo to an unauthenticated user. A post file name must be appended to the URL to bypass the login filter. Docker m...

10CVSS6.6AI score0.78428EPSS
Exploits5
wpexploit
wpexploit
added 2023/11/27 12:0 a.m.167 views

so-widgets-bundle < 1.51.0 - Admin+ Local File Inclusion

Description The plugin does not validate user input before using it to generate paths passed to include function/s, allowing users with the administrator role to perform LFI attacks in the context of Multisite WordPress sites. 1. Create a multi-site wordpress setup, i.e. using docker-containers,...

7.2CVSS8.7AI score0.01034EPSS
Exploits2
Prion
Prion
added 2023/11/21 10:15 p.m.24 views

Design/Logic Flaw

An issue was discovered in ownCloud owncloud/graphapi 0.2.x before 0.2.1 and 0.3.x before 0.3.1. The graphapi app relies on a third-party GetPhpInfo.php library that provides a URL. When this URL is accessed, it reveals the configuration details of the PHP environment phpinfo. This information...

5CVSS6.4AI score0.78428EPSS
Exploits5References2Affected Software1
Vulnrichment
Vulnrichment
added 2023/11/21 12:0 a.m.24 views

CVE-2023-49103

An issue was discovered in ownCloud owncloud/graphapi 0.2.x before 0.2.1 and 0.3.x before 0.3.1. The graphapi app relies on a third-party GetPhpInfo.php library that provides a URL. When this URL is accessed, it reveals the configuration details of the PHP environment phpinfo. This information...

10CVSS6.6AI score0.78428EPSS
Exploits5References2
NVD
NVD
added 2023/10/04 5:15 p.m.34 views

CVE-2023-20235

A vulnerability in the on-device application development workflow feature for the Cisco IOx application hosting infrastructure in Cisco IOS XE Software could allow an authenticated, remote attacker to access the underlying operating system as the root user. This vulnerability exists because Docke...

8.8CVSS7.5AI score0.00509EPSS
Exploits0References1
Prion
Prion
added 2023/10/04 5:15 p.m.29 views

Design/Logic Flaw

A vulnerability in the on-device application development workflow feature for the Cisco IOx application hosting infrastructure in Cisco IOS XE Software could allow an authenticated, remote attacker to access the underlying operating system as the root user. This vulnerability exists because Docke...

6.5CVSS8.5AI score0.00509EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/10/04 4:14 p.m.29 views

CVE-2023-20235

A vulnerability in the on-device application development workflow feature for the Cisco IOx application hosting infrastructure in Cisco IOS XE Software could allow an authenticated, remote attacker to access the underlying operating system as the root user. This vulnerability exists because Docke...

6.5CVSS8.8AI score0.00509EPSS
Exploits0References1
Rows per page
Query Builder