Уязвимость CVE-2014-8179

CVE-2014-8179

CVSS3: 7.5

ubuntu

больше 6 лет назад

Docker Engine before 1.8.3 and CS Docker Engine before 1.6.2-CS7 does not properly validate and extract the manifest object from its JSON representation during a pull, which allows attackers to inject new attributes in a JSON object and bypass pull-by-digest validation.

CVE-2014-8179

redhat

больше 10 лет назад

Docker Engine before 1.8.3 and CS Docker Engine before 1.6.2-CS7 does not properly validate and extract the manifest object from its JSON representation during a pull, which allows attackers to inject new attributes in a JSON object and bypass pull-by-digest validation.

CVE-2014-8179

CVSS3: 7.5

nvd

больше 6 лет назад

Docker Engine before 1.8.3 and CS Docker Engine before 1.6.2-CS7 does not properly validate and extract the manifest object from its JSON representation during a pull, which allows attackers to inject new attributes in a JSON object and bypass pull-by-digest validation.

CVE-2014-8179

CVSS3: 7.5

debian

больше 6 лет назад

Docker Engine before 1.8.3 and CS Docker Engine before 1.6.2-CS7 does ...

GHSA-7w47-v4xv-5crg

CVSS3: 7.5

github

почти 4 года назад

Docker Engine before 1.8.3 and CS Docker Engine before 1.6.2-CS7 does not properly validate and extract the manifest object from its JSON representation during a pull, which allows attackers to inject new attributes in a JSON object and bypass pull-by-digest validation.

exploitDog

CVE-2014-8179

Описание

Возможность эксплуатации

Связанные уязвимости