Lucene search
K

8 matches found

Github Security Blog
Github Security Blog
added 2022/02/15 1:57 a.m.33 views

Arbitrary File Override in Docker Engine

Docker Engine before 1.6.1 allows local users to set arbitrary Linux Security Modules LSM and dockert policies via an image that allows volumes to override files in /proc...

3.6CVSS7.2AI score0.00567EPSS
Exploits0References9Affected Software1
OSV
OSV
added 2022/02/15 1:57 a.m.24 views

GHSA-V4H8-794J-G8MM Arbitrary File Override in Docker Engine

Docker Engine before 1.6.1 allows local users to set arbitrary Linux Security Modules LSM and dockert policies via an image that allows volumes to override files in /proc...

5.1CVSS7.4AI score0.00567EPSS
Exploits0References9
Veracode
Veracode
added 2017/05/03 6:57 a.m.29 views

File Override

github.com/docker/docker is vulnerable to file override attacks. It allows local users to set Linux Security Modules LSM and dockert policies. It can be triggered through images that allow volumes to override files in /proc...

3.6CVSS5.7AI score0.00567EPSS
Exploits0References6Affected Software2
CNVD
CNVD
added 2015/05/21 12:0 a.m.3 views

Docker Engine Arbitrary File Manipulation Vulnerability

Docker Engine is a set of lightweight runtime environments and package management tools from Docker, Inc. An arbitrary file manipulation vulnerability exists in versions of Docker Engine prior to 1.6.1, which allows local users to overwrite files in /proc by setting arbitrary Linux security modul...

3.6CVSS6.5AI score0.00567EPSS
Exploits0References1
OSV
OSV
added 2015/05/18 3:59 p.m.7 views

CVE-2015-3631

Docker Engine before 1.6.1 allows local users to set arbitrary Linux Security Modules LSM and dockert policies via an image that allows volumes to override files in /proc...

7.4AI score
Exploits0References4
Prion
Prion
added 2015/05/18 3:59 p.m.23 views

Design/Logic Flaw

Docker Engine before 1.6.1 allows local users to set arbitrary Linux Security Modules LSM and dockert policies via an image that allows volumes to override files in /proc...

3.6CVSS6.6AI score0.00567EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2015/05/18 3:0 p.m.23 views

CVE-2015-3631

Docker Engine before 1.6.1 allows local users to set arbitrary Linux Security Modules LSM and dockert policies via an image that allows volumes to override files in /proc...

7.3AI score0.00567EPSS
Exploits0References4
CVE
CVE
added 2015/05/18 3:0 p.m.76 views

CVE-2015-3631

Docker Engine prior to 1.6.1 is affected by a local-privilege-escalation vulnerability where a container image can cause volumes to override files under /proc, allowing an attacker to set arbitrary Linux Security Modules (LSM) and docker_t policies. The issue arises when /proc files can be overri...

3.6CVSS7.2AI score0.00567EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder