Уязвимость CVE-2014-8179

CVE-2014-8179

CVSS3: 7.5

ubuntu

больше 5 лет назад

Docker Engine before 1.8.3 and CS Docker Engine before 1.6.2-CS7 does not properly validate and extract the manifest object from its JSON representation during a pull, which allows attackers to inject new attributes in a JSON object and bypass pull-by-digest validation.

CVE-2014-8179

redhat

больше 9 лет назад

Docker Engine before 1.8.3 and CS Docker Engine before 1.6.2-CS7 does not properly validate and extract the manifest object from its JSON representation during a pull, which allows attackers to inject new attributes in a JSON object and bypass pull-by-digest validation.

CVE-2014-8179

CVSS3: 7.5

nvd

больше 5 лет назад

Docker Engine before 1.8.3 and CS Docker Engine before 1.6.2-CS7 does not properly validate and extract the manifest object from its JSON representation during a pull, which allows attackers to inject new attributes in a JSON object and bypass pull-by-digest validation.

CVE-2014-8179

CVSS3: 7.5

debian

больше 5 лет назад

Docker Engine before 1.8.3 and CS Docker Engine before 1.6.2-CS7 does ...

GHSA-7w47-v4xv-5crg

CVSS3: 7.5

github

около 3 лет назад

Docker Engine before 1.8.3 and CS Docker Engine before 1.6.2-CS7 does not properly validate and extract the manifest object from its JSON representation during a pull, which allows attackers to inject new attributes in a JSON object and bypass pull-by-digest validation.

exploitDog

CVE-2014-8179

Описание

Возможность эксплуатации

Связанные уязвимости