Уязвимость CVE-2015-3630

CVE-2015-3630

ubuntu

около 10 лет назад

Docker Engine before 1.6.1 uses weak permissions for (1) /proc/asound, (2) /proc/timer_stats, (3) /proc/latency_stats, and (4) /proc/fs, which allows local users to modify the host, obtain sensitive information, and perform protocol downgrade attacks via a crafted image.

CVE-2015-3630

redhat

около 10 лет назад

Docker Engine before 1.6.1 uses weak permissions for (1) /proc/asound, (2) /proc/timer_stats, (3) /proc/latency_stats, and (4) /proc/fs, which allows local users to modify the host, obtain sensitive information, and perform protocol downgrade attacks via a crafted image.

CVE-2015-3630

nvd

около 10 лет назад

Docker Engine before 1.6.1 uses weak permissions for (1) /proc/asound, (2) /proc/timer_stats, (3) /proc/latency_stats, and (4) /proc/fs, which allows local users to modify the host, obtain sensitive information, and perform protocol downgrade attacks via a crafted image.

CVE-2015-3630

debian

около 10 лет назад

Docker Engine before 1.6.1 uses weak permissions for (1) /proc/asound, ...

GHSA-8fvr-5rqf-3wwh

CVSS3: 8.4

github

больше 3 лет назад

Information Exposure in Docker Engine

exploitDog

CVE-2015-3630

Описание

Возможность эксплуатации

Связанные уязвимости