Lucene search
+L

7 matches found

OSV
OSV
added 2022/02/15 1:57 a.m.25 views

GHSA-G44J-7VP3-68CV Arbitrary File Write in Libcontainer

Libcontainer 1.6.0, as used in Docker Engine, allows local users to escape containerization "mount namespace breakout" and write to arbitrary file on the host system via a symlink attack in an image when respawning a container...

8.4CVSS7.4AI score0.00603EPSS
Exploits0References9
Veracode
Veracode
added 2017/05/03 7:17 a.m.25 views

Directory Traversal

github.com/docker/docker is vulnerable to directory traversal attacks. These attacks are possible by using a symlink attack in an image when respawning a container. It allows local users to escape containerization "mount namespace breakout" and file overwrite...

7.8CVSS5.8AI score0.00603EPSS
Exploits0References7Affected Software2
OpenVAS
OpenVAS
added 2015/09/08 12:0 a.m.31 views

Amazon Linux: Security Advisory (ALAS-2015-522)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.2AI score0.00609EPSS
Exploits0References2
Prion
Prion
added 2015/05/18 3:59 p.m.24 views

Design/Logic Flaw

Libcontainer 1.6.0, as used in Docker Engine, allows local users to escape containerization "mount namespace breakout" and write to arbitrary file on the host system via a symlink attack in an image when respawning a container...

7.2CVSS6.7AI score0.00603EPSS
Exploits0References5Affected Software2
UbuntuCve
UbuntuCve
added 2015/05/18 3:59 p.m.39 views

CVE-2015-3629

Libcontainer 1.6.0, as used in Docker Engine, allows local users to escape containerization "mount namespace breakout" and write to arbitrary file on the host system via a symlink attack in an image when respawning a container...

7.8CVSS7.2AI score0.00603EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2015/05/18 3:0 p.m.34 views

CVE-2015-3629

Libcontainer 1.6.0, as used in Docker Engine, allows local users to escape containerization "mount namespace breakout" and write to arbitrary file on the host system via a symlink attack in an image when respawning a container...

7.8CVSS7.4AI score0.00603EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2015/05/08 12:0 a.m.34 views

Amazon Linux AMI : docker (ALAS-2015-522)

The file-descriptor passed by libcontainer to the pid-1 process of a container has been found to be opened prior to performing the chroot, allowing insecure open and symlink traversal. This allows malicious container images to trigger a local privilege escalation. CVE-2015-3627 Libcontainer versi...

7.8CVSS6.3AI score0.00609EPSS
Exploits0References5
Rows per page
Query Builder