Lucene search

K

14 matches found

CVE
CVE
added 2018/07/06 4:29 p.m.4909 views

CVE-2018-10892

The default OCI linux spec in oci/defaults{_linux}.go in Docker/Moby from 1.11 to current does not block /proc/acpi pathnames. The flaw allows an attacker to modify host's hardware like enabling/disabling bluetooth or turning up/down keyboard brightness.

6.3CVSS5.3AI score0.00189EPSS
CVE
CVE
added 2023/04/04 10:15 p.m.661 views

CVE-2023-28842

Moby) is an open source container framework developed by Docker Inc. that is distributed as Docker, Mirantis Container Runtime, and various other downstream projects/products. The Moby daemon component (dockerd), which is developed as moby/moby is commonly referred to as Docker . Swarm Mode, which ...

6.8CVSS7.6AI score0.00403EPSS
CVE
CVE
added 2023/04/04 10:15 p.m.656 views

CVE-2023-28840

Moby is an open source container framework developed by Docker Inc. that is distributed as Docker, Mirantis Container Runtime, and various other downstream projects/products. The Moby daemon component (dockerd), which is developed as moby/moby, is commonly referred to as Docker . Swarm Mode, which ...

8.7CVSS8.4AI score0.00425EPSS
CVE
CVE
added 2023/04/04 10:15 p.m.618 views

CVE-2023-28841

Moby is an open source container framework developed by Docker Inc. that is distributed as Docker, Mirantis Container Runtime, and various other downstream projects/products. The Moby daemon component (dockerd), which is developed as moby/moby is commonly referred to as Docker . Swarm Mode, which i...

6.8CVSS7.4AI score0.02777EPSS
CVE
CVE
added 2022/03/24 8:15 p.m.471 views

CVE-2022-24769

Moby is an open-source project created by Docker to enable and accelerate software containerization. A bug was found in Moby (Docker Engine) prior to version 20.10.14 where containers were incorrectly started with non-empty inheritable Linux process capabilities, creating an atypical Linux environm...

5.9CVSS6.5AI score0.00111EPSS
CVE
CVE
added 2021/10/04 9:15 p.m.389 views

CVE-2021-41089

Moby is an open-source project created by Docker to enable software containerization. A bug was found in Moby (Docker Engine) where attempting to copy files using docker cp into a specially-crafted container can result in Unix file permission changes for existing files in the host’s filesystem, wid...

6.3CVSS5.5AI score0.00033EPSS
CVE
CVE
added 2024/02/01 5:15 p.m.321 views

CVE-2024-24557

Moby is an open-source project created by Docker to enable software containerization. The classic builder cache system is prone to cache poisoning if the image is built FROM scratch. Also, changes to some instructions (most important being HEALTHCHECK and ONBUILD) would not cause a cache miss. An a...

7.8CVSS7.4AI score0.0007EPSS
CVE
CVE
added 2024/03/20 9:15 p.m.298 views

CVE-2024-29018

Moby is an open source container framework that is a key component of Docker Engine, Docker Desktop, and other distributions of container tooling or runtimes. Moby's networking implementation allows for many networks, each with their own IP address range and gateway, to be defined. This feature is ...

7.5CVSS5.8AI score0.00143EPSS
CVE
CVE
added 2021/10/04 9:15 p.m.240 views

CVE-2021-41091

Moby is an open-source project created by Docker to enable software containerization. A bug was found in Moby (Docker Engine) where the data directory (typically /var/lib/docker) contained subdirectories with insufficiently restricted permissions, allowing otherwise unprivileged Linux users to trav...

6.3CVSS6.9AI score0.04758EPSS
CVE
CVE
added 2024/11/29 6:15 p.m.218 views

CVE-2024-36623

moby through v25.0.3 has a Race Condition vulnerability in the streamformatter package which can be used to trigger multiple concurrent write operations resulting in data corruption or application crashes.

8.1CVSS8.1AI score0.00164EPSS
CVE
CVE
added 2022/09/09 6:15 p.m.145 views

CVE-2022-36109

Moby is an open-source project created by Docker to enable software containerization. A bug was found in Moby (Docker Engine) where supplementary groups are not set up properly. If an attacker has direct access to a container and manipulates their supplementary group access, they may be able to use...

6.3CVSS6AI score0.00047EPSS
CVE
CVE
added 2022/04/18 5:15 p.m.133 views

CVE-2022-27652

A flaw was found in cri-o, where containers were incorrectly started with non-empty default permissions. A vulnerability was found in Moby (Docker Engine) where containers started incorrectly with non-empty inheritable Linux process capabilities. This flaw allows an attacker with access to programs...

5.3CVSS5.3AI score0.00021EPSS
CVE
CVE
added 2017/11/04 5:29 p.m.55 views

CVE-2017-16539

The DefaultLinuxSpec function in oci/defaults.go in Docker Moby through 17.03.2-ce does not block /proc/scsi pathnames, which allows attackers to trigger data loss (when certain older Linux kernels are used) by leveraging Docker container access to write a "scsi remove-single-device" line to /proc/...

5.9CVSS5.4AI score0.00771EPSS
CVE
CVE
added 2018/09/10 5:29 p.m.47 views

CVE-2018-12608

An issue was discovered in Docker Moby before 17.06.0. The Docker engine validated a client TLS certificate using both the configured client CA root certificate and all system roots on non-Windows systems. This allowed a client with any domain validated certificate signed by a system-trusted root C...

7.5CVSS7.3AI score0.0011EPSS