GHSA-wxj3-qwv4-cvfm

Опубликовано: 15 фев. 2022

Источник: github

Github: Прошло ревью

CVSS3: 8.4

Описание

Privilege Escalation in Docker

Docker 1.0.0 uses world-readable and world-writable permissions on the management socket, which allows local users to gain privileges via unspecified vectors.

Ссылки

Пакеты

Наименование

github.com/docker/docker

Затронутые версииВерсия исправления

< 1.0.1

1.0.1

EPSS

Процентиль: 10%

0.00034

Низкий

8.4 High

CVSS3

CVE ID

CVE-2014-3499

Дефекты

CWE-269

Связанные уязвимости

CVE-2014-3499

ubuntu

больше 11 лет назад

Docker 1.0.0 uses world-readable and world-writable permissions on the management socket, which allows local users to gain privileges via unspecified vectors.

CVE-2014-3499

redhat

больше 11 лет назад

Docker 1.0.0 uses world-readable and world-writable permissions on the management socket, which allows local users to gain privileges via unspecified vectors.

CVE-2014-3499

nvd

больше 11 лет назад

Docker 1.0.0 uses world-readable and world-writable permissions on the management socket, which allows local users to gain privileges via unspecified vectors.