Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2018-10892

Опубликовано: 05 июл. 2018
Источник: redhat
CVSS3: 6.3
EPSS Низкий

Описание

The default OCI linux spec in oci/defaults{_linux}.go in Docker/Moby from 1.11 to current does not block /proc/acpi pathnames. The flaw allows an attacker to modify host's hardware like enabling/disabling bluetooth or turning up/down keyboard brightness.

The default OCI Linux spec in oci/defaults{_linux}.go in Docker/Moby, from 1.11 to current, does not block /proc/acpi pathnames. The flaw allows an attacker to modify host's hardware like enabling/disabling Bluetooth or turning up/down keyboard brightness.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise Linux 8podmanNot affected
Red Hat OpenShift Enterprise 3cri-oNot affected
Red Hat OpenShift Enterprise 3dockerNot affected
Red Hat Enterprise Linux 7 ExtraspodmanFixedRHBA-2018:279626.09.2018
Red Hat Enterprise Linux 7 ExtrasdockerFixedRHSA-2018:248216.08.2018

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate
Дефект:
CWE-250
https://bugzilla.redhat.com/show_bug.cgi?id=1598581docker: container breakout without selinux in enforcing mode

EPSS

Процентиль: 41%
0.00189
Низкий

6.3 Medium

CVSS3

Связанные уязвимости

ubuntu логотип

CVE-2018-10892

CVSS3: 5.3
ubuntu
больше 7 лет назад

The default OCI linux spec in oci/defaults{_linux}.go in Docker/Moby from 1.11 to current does not block /proc/acpi pathnames. The flaw allows an attacker to modify host's hardware like enabling/disabling bluetooth or turning up/down keyboard brightness.

nvd логотип

CVE-2018-10892

CVSS3: 5.3
nvd
больше 7 лет назад

The default OCI linux spec in oci/defaults{_linux}.go in Docker/Moby from 1.11 to current does not block /proc/acpi pathnames. The flaw allows an attacker to modify host's hardware like enabling/disabling bluetooth or turning up/down keyboard brightness.

debian логотип

CVE-2018-10892

CVSS3: 5.3
debian
больше 7 лет назад

The default OCI linux spec in oci/defaults{_linux}.go in Docker/Moby f ...

github логотип

GHSA-hg92-xfw5-qgvm

CVSS3: 5.3
github
больше 3 лет назад

The default OCI linux spec in oci/defaults{_linux}.go in Docker/Moby from 1.11 to current does not block /proc/acpi pathnames. The flaw allows an attacker to modify host's hardware like enabling/disabling bluetooth or turning up/down keyboard brightness.

suse-cvrf логотип

openSUSE-SU-2019:2021-1

suse-cvrf
больше 6 лет назад

Security update for containerd, docker, docker-runc, golang-github-docker-libnetwork

EPSS

Процентиль: 41%
0.00189
Низкий

6.3 Medium

CVSS3