Lucene search

Docker Security Vulnerabilities - 2020

cve

CVE-2014-0048

An issue was found in Docker before 1.6.0. Some programs and scripts in Docker are downloaded via HTTP and then executed or used in unsafe ways.

9.8CVSS

9.4AI Score

0.006EPSS

2020-01-02 05:15 PM

cve

CVE-2014-5278

A vulnerability exists in Docker before 1.2 via container names, which may collide with and override container IDs.

5.3CVSS

5.2AI Score

0.002EPSS

2020-02-07 06:15 PM

cve

CVE-2020-14298

The version of docker as released for Red Hat Enterprise Linux 7 Extras via RHBA-2020:0053 advisory included an incorrect version of runc missing the fix for CVE-2019-5736, which was previously fixed via RHSA-2019:0304. This issue could allow a malicious or compromised container to compromise the c...

8.8CVSS

8.5AI Score

0.004EPSS

2020-07-13 09:15 PM

cve

CVE-2020-14300

The docker packages version docker-1.13.1-108.git4ef4b30.el7 as released for Red Hat Enterprise Linux 7 Extras via RHBA-2020:0053 (https://access.redhat.com/errata/RHBA-2020:0053) included an incorrect version of runc that was missing multiple bug and security fixes. One of the fixes regressed in t...

8.8CVSS

7.1AI Score

0.001EPSS

2020-07-13 10:15 PM

cve

CVE-2020-27534

util/binfmt_misc/check.go in Builder in Docker Engine before 19.03.9 calls os.OpenFile with a potentially unsafe qemu-check temporary pathname, constructed with an empty first argument in an ioutil.TempDir call.

5.3CVSS

5.4AI Score

0.001EPSS

2020-12-30 11:15 PM