Lucene search
K

9263 matches found

CNNVD
CNNVD
added 2024/12/19 12:0 a.m.1 views

IBM Security Verify Access Docker 安全漏洞

IBM Security Verify Access Docker is a service from International Business Machines IBM that can be used to configure a Security Verify Access environment for Docker. A security vulnerability exists in IBM Security Verify Access Docker versions 10.0.0 through 10.0.6, which stems from a...

7.8CVSS8.2AI score0.00228EPSS
Exploits1References1
OPENSUSE Linux
OPENSUSE Linux
added 2024/12/19 12:0 a.m.4 views

docker-27.4.1_ce-12.1 on GA media (moderate)

docker-27.4.1ce-12.1 on GA media Announcement ID: openSUSE-SU-2024:14597-1 Rating: moderate Cross-References: CVE-2024-29018 CVSS scores: CVE-2024-29018 SUSE : 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N CVE-2024-29018 SUSE : 8.2 CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:...

8.2CVSS7.2AI score0.0075EPSS
Exploits0
Wolfi
Wolfi
added 2024/12/18 9:59 p.m.109 views

GHSA-W32M-9786-JP63 vulnerabilities

Vulnerabilities for packages: coredns, vault-benchmark, terraform, gke-gcloud-auth-plugin, minio, ko, buildah, kuberlr, kube-fluentd-operator, prometheus-blackbox-exporter, kyverno-policy-reporter, cosign, gitea, cloudnative-pg, velero, local-static-provisioner, nri-discovery-kubernetes, kine,...

5.8AI score
Exploits0
OSV
OSV
added 2024/12/18 9:15 p.m.5 views

AZL-54446 CVE-2024-45338 affecting package docker-compose for versions less than 2.27.0-3

An attacker can craft an input to the Parse functions that would be processed non-linearly with respect to its length, resulting in extremely slow parsing. This could cause a denial of service...

5.3CVSS6.6AI score0.00856EPSS
Exploits0References1
OSV
OSV
added 2024/12/18 9:15 p.m.9 views

AZL-54404 CVE-2024-45338 affecting package docker-buildx for versions less than 0.14.0-3

An attacker can craft an input to the Parse functions that would be processed non-linearly with respect to its length, resulting in extremely slow parsing. This could cause a denial of service...

5.3CVSS6.6AI score0.00856EPSS
Exploits0References1
Chainguard
Chainguard
added 2024/12/18 9:15 p.m.22 views

CVE-2024-45338 vulnerabilities

Vulnerabilities for packages: cue-fips, nginx-prometheus-exporter, nemo, sops, dive, azuredisk-csi-fips, volume-modifier-for-k8s, crossplane-provider-sql, bank-vaults-fips, eks-distro-fips, k8ssandra-operator-fips, istio-pilot-agent, rclone, flux-image-reflector-controller, karpenter-fips,...

5.3CVSS6.7AI score0.00856EPSS
Exploits0
Wolfi
Wolfi
added 2024/12/18 9:15 p.m.129 views

CVE-2024-45338 vulnerabilities

Vulnerabilities for packages: coredns, vault-benchmark, terraform, gke-gcloud-auth-plugin, minio, ko, buildah, kuberlr, kube-fluentd-operator, prometheus-blackbox-exporter, kyverno-policy-reporter, cosign, gitea, cloudnative-pg, velero, local-static-provisioner, nri-discovery-kubernetes, kine,...

5.3CVSS6.7AI score0.00856EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2024/12/18 12:0 a.m.3 views

PT-2024-36564 · Kanboard +1 · Kanboard +1

Name of the Vulnerable Software and Affected Versions: Kanboard versions prior to 1.2.43 Description: Kanboard is project management software that focuses on the Kanban methodology. In affected versions, sessions are still usable even though their lifetime has exceeded. Kanboard implements a cust...

6.5CVSS7.4AI score0.00492EPSS
Exploits1References17
Tenable Nessus
Tenable Nessus
added 2024/12/18 12:0 a.m.17 views

SUSE SLES15: docker / docker-bash-completion / docker-fish-completion / etc (SUSE-SU-2024:4360-1)

The remote SUSE Linux SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:4360-1 advisory. - Update docker-buildx to v0.19.2. See upstream changelog online at . Some notable changelogs from the last update: -...

9.9CVSS7AI score0.16496EPSS
Exploits0References17
OSV
OSV
added 2024/12/18 12:0 a.m.2 views

OPENSUSE-SU-2024:14597-1 docker-27.4.1_ce-12.1 on GA media

These are all security issues fixed in the docker-27.4.1ce-12.1 package on the GA media of openSUSE Tumbleweed...

7.5CVSS7.7AI score0.0075EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2024/12/18 12:0 a.m.23 views

openSUSE Security Advisory (SUSE-SU-2024:4360-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.9CVSS7AI score0.16496EPSS
Exploits0References20
OSV
OSV
added 2024/12/18 12:0 a.m.6 views

OPENSUSE-SU-2024:14598-1 docker-stable-24.0.9_ce-6.1 on GA media

These are all security issues fixed in the docker-stable-24.0.9ce-6.1 package on the GA media of openSUSE Tumbleweed...

7.5CVSS7.8AI score0.00957EPSS
Exploits1References3
CBLMariner
CBLMariner
added 2024/12/17 11:15 p.m.13 views

CVE-2024-36623 affecting package docker-cli for versions less than 25.0.3-3

CVE-2024-36623 affecting package docker-cli for versions less than 25.0.3-3. A patched version of the package is available...

8.1CVSS6.6AI score0.00641EPSS
Exploits0
OSV
OSV
added 2024/12/17 2:35 p.m.7 views

SUSE-SU-2024:4360-1 Security update for docker

This update for docker fixes the following issues: - Update docker-buildx to v0.19.2. See upstream changelog online at . Some notable changelogs from the last update: - Add a new toggle file /etc/docker/suse-secrets-enable which allows users to disable the SUSEConnect integration with Docker whic...

9.9CVSS8.8AI score0.16496EPSS
Exploits0References14
Tenable Nessus
Tenable Nessus
added 2024/12/17 12:0 a.m.18 views

SUSE SLES12 Security Update : docker (SUSE-SU-2024:4319-1)

The remote SUSE Linux SLES12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:4319-1 advisory. - Update docker-buildx to v0.19.2. See upstream changelog online at . Some notable changelogs from the last update: - Add a new toggle file...

9.9CVSS7.5AI score0.16496EPSS
Exploits0References17
Tenable Nessus
Tenable Nessus
added 2024/12/17 12:0 a.m.26 views

Ubuntu 18.04 LTS / 24.04 LTS : Docker vulnerabilities (USN-7161-1)

The remote Ubuntu 18.04 LTS / 24.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-7161-1 advisory. Yair Zak discovered that Docker could unexpectedly forward DNS requests from internal networks in an unexpected manner. An attacker could...

9.9CVSS7.6AI score0.16496EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2024/12/17 12:0 a.m.22 views

Ubuntu: Security Advisory (USN-7161-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.9CVSS8.6AI score0.16496EPSS
Exploits0References2
Ubuntu
Ubuntu
added 2024/12/16 1:56 p.m.37 views

USN-7161-1: Docker vulnerabilities

Yair Zak discovered that Docker could unexpectedly forward DNS requests from internal networks in an unexpected manner. An attacker could possibly use this issue to exfiltrate data by encoding information in DNS queries to controlled nameservers. This issue was only addressed for the source packa...

9.9CVSS7.5AI score0.16496EPSS
Exploits0
OSV
OSV
added 2024/12/16 1:56 p.m.2 views

USN-7161-1 Docker vulnerabilities

Yair Zak discovered that Docker could unexpectedly forward DNS requests from internal networks in an unexpected manner. An attacker could possibly use this issue to exfiltrate data by encoding information in DNS queries to controlled nameservers. This issue was only addressed for the source packa...

9.9CVSS6.7AI score0.16496EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2024/12/15 12:0 a.m.10 views

CBL Mariner 2.0 Security Update: docker-cli / moby-cli / moby-compose / moby-engine (CVE-2024-36623)

The version of docker-cli / moby-cli / moby-compose / moby-engine installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-36623 advisory. - moby through v25.0.3 has a Race Condition vulnerability in the...

8.1CVSS7.7AI score0.00641EPSS
Exploits0References2
Rows per page
Query Builder