5 matches found
EUVD-2022-6933
Malicious code in bioql PyPI...
Amazon Linux 2 : docker (ALASDOCKER-2023-022)
The version of docker installed on the remote host is prior to 20.10.23-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2DOCKER-2023-022 advisory. A flaw was found in Moby. This flaw allows an attacker to bypass primary group restrictions due to a flaw in the...
MGASA-2023-0009 Updated docker packages fix security vulnerability
Server side request forgery CVE-2022-29153 Bypass primary group restrictions due to a flaw in the supplementary group access setup CVE-2022-36109 Imported Nodes/Services Information leak in moby-engine. CVE-2022-3920...
CVE-2022-36109
A flaw was found in Moby. This flaw allows an attacker to bypass primary group restrictions due to a flaw in the supplementary group access setup...
CVE-2022-36109
Moby is an open-source project created by Docker to enable software containerization. A bug was found in Moby Docker Engine where supplementary groups are not set up properly. If an attacker has direct access to a container and manipulates their supplementary group access, they may be able to use...