CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

2678 matches found

Fedora•added 2022/09/15 1:57 a.m.•38 views

[SECURITY] Fedora 36 Update: moby-engine-20.10.18-1.fc36

Docker is an open source project to build, ship and run any application as a lightweight container. Docker containers are both hardware-agnostic and platform-agnostic. This means they can run anywhere, from your laptop to the largest EC2 compute instance a nd everything in between - and they don'...

6.3CVSS6.7AI score0.00039EPSS

Exploits0

Tenable Nessus•added 2022/09/15 12:0 a.m.•30 views

RHEL 7 : docker (RHSA-2021:2144)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2021:2144 advisory. Docker is an open-source engine that automates the deployment of any application as a lightweight, portable, self-sufficient container that runs...

8.5CVSS7.5AI score0.01473EPSS

Exploits0References5

Gitee•added 2022/09/14 12:59 a.m.•4 views

Exploit for SQL Injection in Zabbix

This is a comprehensive and well-structured vulnerability hub repository. Here's a concise analysis of the provided information: Classification: It is an offensive tool for various vulnerability exploitation and testing purposes. CVE IDs: The repository contains references to several CVE IDs,...

9.8CVSS7.1AI score0.86228EPSS

Exploits28

NVD•added 2022/09/13 7:15 p.m.•15 views

CVE-2022-39206

Onedev is an open source, self-hosted Git Server with CI/CD and Kanban. When using Docker-based job executors, the Docker socket e.g. /var/run/docker.sock on Linux is mounted into each Docker step. Users that can define and trigger CI/CD jobs on a project could use this to control the Docker daem...

9.9CVSS0.01049EPSS

Exploits1References3

Prion•added 2022/09/13 7:15 p.m.•15 views

Buffer overflow

6.5CVSS9.4AI score0.01049EPSS

Exploits1References3Affected Software1

CVE•added 2022/09/13 6:50 p.m.•66 views

CVE-2022-39206

CVE-2022-39206 affects OneDev. When using Docker-based job executors, the Docker socket (e.g., /var/run/docker.sock) is mounted into each Docker step, enabling users who can define/trigger CI/CD jobs to control the host daemon. This can allow regular (non-admin) users to break out of containers a...

9.9CVSS9.6AI score0.01049EPSS

Exploits1References3Affected Software1

Cvelist•added 2022/09/13 6:50 p.m.•14 views

CVE-2022-39206 CI/CD Docker Escape in OneDev

9.9CVSS9.8AI score0.01049EPSS

Exploits1References3

OSV•added 2022/09/13 6:50 p.m.•15 views

CVE-2022-39206 CI/CD Docker Escape in OneDev

9.9CVSS8.9AI score0.01049EPSS

Exploits1References5

Cvelist•added 2022/09/09 5:20 p.m.•32 views

CVE-2022-36109 Moby vulnerability relating to supplementary group permissions

Moby is an open-source project created by Docker to enable software containerization. A bug was found in Moby Docker Engine where supplementary groups are not set up properly. If an attacker has direct access to a container and manipulates their supplementary group access, they may be able to use...

5.3CVSS6.8AI score0.00039EPSS

Exploits0References6

Cvelist•added 2022/09/08 5:5 a.m.•21 views

CVE-2022-25914 Remote Code Execution (RCE)

The package com.google.cloud.tools:jib-core before 0.22.0 are vulnerable to Remote Code Execution RCE via the isDockerInstalled function, due to attempting to execute input...

5.6CVSS10AI score0.03874EPSS

Exploits0References3

OSV•added 2022/09/06 7:15 a.m.•1 views

CVE-2022-34883

OS Command Injection vulnerability in Hitachi RAID Manager Storage Replication Adapter allows remote authenticated users to execute arbitrary OS commands. This issue affects: Hitachi RAID Manager Storage Replication Adapter 02.01.04 versions prior to 02.03.02 on Windows; 02.05.00 versions prior t...

8.8CVSS6AI score

Exploits0References1

OSV•added 2022/09/06 7:15 a.m.•2 views

CVE-2022-34882

Information Exposure Through an Error Message vulnerability in Hitachi RAID Manager Storage Replication Adapter allows remote authenticated users to gain sensitive information. This issue affects: Hitachi RAID Manager Storage Replication Adapter 02.01.04 versions prior to 02.03.02 on Windows;...

6.5CVSS5.8AI score0.00337EPSS

Exploits0References1

NVD•added 2022/09/06 7:15 a.m.•12 views

CVE-2022-34882

9CVSS0.00337EPSS

Exploits0References1

NVD•added 2022/09/06 7:15 a.m.•24 views

CVE-2022-34883

8.8CVSS0.01174EPSS

Exploits0References1

Prion•added 2022/09/06 7:15 a.m.•15 views

Command injection

6.5CVSS8.8AI score0.01174EPSS

Exploits0References1Affected Software1

Prion•added 2022/09/06 7:15 a.m.•13 views

Design/Logic Flaw

4CVSS6.3AI score0.00337EPSS

Exploits0References1Affected Software1

Cvelist•added 2022/09/06 6:30 a.m.•24 views

CVE-2022-34883 OS Command Injection Vulnerability in RAID Manager Storage Replication Adapter

7.2CVSS9AI score0.01174EPSS

Exploits0References1

Positive Technologies•added 2022/09/06 12:0 a.m.•3 views

PT-2022-22416 · Hitachi · Hitachi Raid Manager Storage Replication Adapter

Name of the Vulnerable Software and Affected Versions: Hitachi RAID Manager Storage Replication Adapter versions 02.01.04 through 02.03.01 on Windows Hitachi RAID Manager Storage Replication Adapter versions 02.05.00 through 02.05.00 on Windows and Docker Description: Information Exposure Through...

9CVSS6.5AI score0.00337EPSS

Exploits0References3