CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

607 matches found

CNNVD•added 2020/12/30 12:0 a.m.•2 views

Docker Engine 路径遍历漏洞

Docker Engine is a set of lightweight runtime environments and package management tools from Docker, Inc. A path traversal vulnerability exists in Docker Engine versions prior to 19.03.9. No detailed vulnerability details are provided at this time...

5.3CVSS6.7AI score0.01745EPSS

Exploits0References7

Positive Technologies•added 2020/12/30 12:0 a.m.•2 views

PT-2020-16700 · Docker · Docker Engine +1

Name of the Vulnerable Software and Affected Versions: Docker Engine versions prior to 19.03.9 Description: The issue arises from the util/binfmt misc/check.go file in the Builder component of Docker Engine, where it calls os.OpenFile with a potentially unsafe temporary pathname for qemu-check...

5.3CVSS5.9AI score0.01745EPSS

Exploits0References10

Tenable Nessus•added 2020/12/04 12:0 a.m.•40 views

Oracle Linux 7 : docker-cli / docker-engine (ELSA-2020-5966)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2020-5966 advisory. - Fix for CVE-2020-15257 - Fix for CVE-2020-15157 - Address CVE-2020-16845 - update to 19.03.11 for CVE-2020-13401 - apply...

9.3CVSS7AI score0.9589EPSS

Exploits35References2

Tenable Nessus•added 2020/10/28 12:0 a.m.•45 views

Oracle Linux 7 : docker-engine / docker-cli (ELSA-2020-5900)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2020-5900 advisory. - Fix for CVE-2020-15157 - Address CVE-2020-16845 - update to 19.03.11 for CVE-2020-13401 - apply e4931e664feac6fa8846f3f04268a0cc98822549, fixes CVE-2019-5736 ...

9.3CVSS7AI score0.9589EPSS

Exploits34References2

Oracle linux•added 2020/08/24 12:0 a.m.•56 views

docker-cli docker-engine security update

docker-cli 19.03.11-5 - Bugfix for 'docker images name' not working on docker 19.03.11-ol - Address CVE-2020-16845 19.03.11-4 - added patch for registry list 19.03.11-3 - update to 19.03.11 for CVE-2020-13401 19.03.1-1.0.0 - update to 19.03.1 19.03-0.0.1 - update to 19.03 18.09.1-1.0.6 - disable...

9.3CVSS0.9589EPSS

Exploits33

OpenVAS•added 2020/07/31 12:0 a.m.•16 views

Huawei EulerOS: Security Advisory for docker-engine (EulerOS-SA-2020-1798)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6CVSS6.3AI score0.02839EPSS

Exploits0References2

Tenable Nessus•added 2020/07/30 12:0 a.m.•28 views

EulerOS 2.0 SP8 : docker-engine (EulerOS-SA-2020-1798)

According to the version of the docker-engine packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - An issue was discovered in Docker Engine before 19.03.11. An attacker in a container, with the CAPNETRAW capability, can craft IPv6 router...

6CVSS7AI score0.02839EPSS

Exploits0References2

Tenable Nessus•added 2020/06/25 12:0 a.m.•253 views

Oracle Linux 7 : docker-cli / docker-engine (ELSA-2020-5739)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2020-5739 advisory. - update to 19.03.11 for CVE-2020-13401 - apply e4931e664feac6fa8846f3f04268a0cc98822549, fixes CVE-2019-5736 - update to 19.03.11 for CVE-2020-13401 - apply...

9.3CVSS7AI score0.9589EPSS

Exploits33References2

Oracle linux•added 2020/06/24 12:0 a.m.•82 views

docker-cli docker-engine security update

docker-cli 19.03.11-4 - added patch for registry list 19.03.11-3 - update to 19.03.11 for CVE-2020-13401 19.03.1-1.0.0 - update to 19.03.1 19.03-0.0.1 - update to 19.03 18.09.1-1.0.6 - disable kmem accounting for UEKR4 18.09.1-1.0.5 - apply e4931e664feac6fa8846f3f04268a0cc98822549, fixes...

9.3CVSS0.3AI score0.9589EPSS

Exploits33

Oracle linux•added 2020/06/12 12:0 a.m.•44 views

docker-engine docker-cli security update

docker-engine 19.03.11-1.0.0 - update to 19.03.11 for CVE-2020-13401 19.03.1-1.0.0 - update to 19.03.1 19.03-0.0.1 - update to 19.03 18.09.1-1.0.6 - disable kmem accounting for UEKR4 18.09.1-1.0.5 - apply e4931e664feac6fa8846f3f04268a0cc98822549, fixes CVE-2019-5736 18.09.1-1.0.4 - fix...

9.3CVSS0.4AI score0.9589EPSS

Exploits33

Amazon•added 2020/06/03 12:0 a.m.•52 views

Important: docker

Issue Overview: An issue was discovered in Docker Engine before 19.03.11. An attacker in a container, with the CAPNETRAW capability, can craft IPv6 router advertisements, and consequently spoof external IPv6 hosts, obtain sensitive information, or cause a denial of service.CVE-2020-13401 Affected...

6CVSS7.1AI score0.02839EPSS

Exploits0

CNVD•added 2020/06/03 12:0 a.m.•2 views

Docker Engine Input Validation Error Vulnerability

Docker Engine is a set of lightweight runtime environments and package management tools from Docker, Inc. An input validation error vulnerability exists in Docker Engine versions prior to 19.03.11, which stems from the fact that the network connection created receives IPv6 router notices by...

6CVSS7.1AI score0.02839EPSS

Exploits0References1

OSV•added 2020/06/02 2:15 p.m.•1 views

DEBIAN-CVE-2020-13401

An issue was discovered in Docker Engine before 19.03.11. An attacker in a container, with the CAPNETRAW capability, can craft IPv6 router advertisements, and consequently spoof external IPv6 hosts, obtain sensitive information, or cause a denial of service...

6CVSS6.8AI score0.02839EPSS

Exploits0References1