Lucene search
K

109 matches found

Tenable Nessus
Tenable Nessus
added 2019/12/19 12:0 a.m.58 views

RancherOS < 1.5.1 Local Command Execution

The remote host is running a version of RancherOS prior to v1.5.1, hence it is vulnerable to a Local Command Execution Vulnerability. Opencontainers runc is prone to a local command-execution vulnerability. A local attacker can exploit this issue to execute arbitrary commands with root privileges...

9.3CVSS7.6AI score0.9857EPSS
Exploits33References3
Veracode
Veracode
added 2019/09/26 5:2 a.m.24 views

Arbitrary File Read

github.com/opencontainers/runc is vulnerable to arbitrary file read. The vulnerability exists as the AppAmor restrictions can be bypassed due to incorrect mount targets check, allowing a malicious Docker image to be mounted over a /proc directory...

7.5CVSS3.6AI score0.04409EPSS
Exploits1References20Affected Software3
Mageia
Mageia
added 2019/02/13 11:8 a.m.49 views

Updated opencontainers-runc packages fix security vulnerability

Not using pivotroot2 leaves the host /proc around in the mount namespace so that it is possible to mount another /proc without any other submount, even if /proc in the container is not fully visible. This flaw allows an attacker to read and modify some parts of the Linux kernel memory rhbz1663068...

9.3CVSS5AI score0.9857EPSS
Exploits33References3
Veracode
Veracode
added 2019/01/15 9:15 a.m.29 views

Information Disclosure

github.com/opencontainers/runc is vulnerable to information disclosure attacks. These attacks are possible because a run exec command can be ptraced by the pid 1 of the container. Using this, it allows attackers to gain access to the file-descriptors of new processes during initialization. It may...

6.4CVSS6.4AI score0.00377EPSS
Exploits0References45Affected Software2
Mageia
Mageia
added 2018/10/19 6:0 p.m.88 views

Updated docker packages fix security vulnerabilities

Updated docker packages fix security vulnerabilities: Lack of content verification in docker allowed a remote attacker to cause a Denial of Service via a crafted image layer payload, aka gzip bombing CVE-2017-14992. The DefaultLinuxSpec function in oci/defaults.go docker did not block /proc/scsi...

6.5CVSS3AI score0.0247EPSS
Exploits0References4
Veracode
Veracode
added 2017/05/03 6:50 a.m.29 views

Privilege Escalation

github.com/opencontainers/runc is vulnerable to privilege escalation attacks. These attacks are possible because github.com/opencontainers/runc treats a numeric UID as a potential username. This allows local users to gain privileges though a numeric username in the password file. This transitivel...

7.8CVSS7.7AI score0.00388EPSS
Exploits0References8Affected Software1
Veracode
Veracode
added 2017/05/03 6:37 a.m.24 views

Access Restriction Bypass

github.com/opencontainers/runc is vulnerable to attackers bypassing access restrictions. This is possible when ambient capabilities are enabled but misconfigured. It would allow malicious images to bypass user permissions and access other files within the file system and other mounted volumes. Th...

7.5CVSS7.5AI score0.02731EPSS
Exploits0References2Affected Software2
Veracode
Veracode
added 2017/05/02 7:0 a.m.31 views

Information Disclosure

github.com/opencontainers/runc is vulnerable to information disclosure attacks. These attacks are possible because a run exec command can be ptraced by the pid 1 of the container. Using this, it allows attackers to gain access to the file-descriptors of new processes during initialization. It may...

6.4CVSS6.4AI score0.00377EPSS
Exploits0References4Affected Software1
ThreatPost
ThreatPost
added 2017/01/18 2:26 p.m.34 views

Docker Patches Privilege Escalation Vulnerability

Docker has patched a privilege escalation vulnerability CVE-2016-9962 that could lead to container escapes, allowing a hacker to affect operations of a host from inside a container. The vulnerability is rated high severity by some Linux distributions such as Arch Linux, which traces the problem t...

4.4CVSS0.6AI score0.00377EPSS
Exploits0References9
Rows per page
Query Builder