Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2021-21284

Опубликовано: 02 фев. 2021
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS2: 2.7
CVSS3: 6.8

Описание

In Docker before versions 9.03.15, 20.10.3 there is a vulnerability involving the --userns-remap option in which access to remapped root allows privilege escalation to real root. When using "--userns-remap", if the root user in the remapped namespace has access to the host filesystem they can modify files under "/var/lib/docker/" that cause writing files with extended privileges. Versions 20.10.3 and 19.03.15 contain patches that prevent privilege escalation from remapped user.

РелизСтатусПримечание
bionic

released

20.10.7-0ubuntu1~18.04.1
devel

not-affected

20.10.7-0ubuntu1
esm-apps/bionic

released

20.10.7-0ubuntu1~18.04.1
esm-apps/focal

released

20.10.7-0ubuntu1~20.04.1
esm-apps/jammy

not-affected

20.10.7-0ubuntu1
esm-apps/noble

not-affected

20.10.7-0ubuntu1
esm-infra-legacy/trusty

DNE

esm-infra/xenial

needed

focal

released

20.10.7-0ubuntu1~20.04.1
groovy

ignored

end of life

Показывать по

Ссылки на источники

EPSS

Процентиль: 5%
0.0002
Низкий

2.7 Low

CVSS2

6.8 Medium

CVSS3

Связанные уязвимости

redhat логотип

CVE-2021-21284

CVSS3: 6
redhat
около 5 лет назад

In Docker before versions 9.03.15, 20.10.3 there is a vulnerability involving the --userns-remap option in which access to remapped root allows privilege escalation to real root. When using "--userns-remap", if the root user in the remapped namespace has access to the host filesystem they can modify files under "/var/lib/docker/<remapping>" that cause writing files with extended privileges. Versions 20.10.3 and 19.03.15 contain patches that prevent privilege escalation from remapped user.

nvd логотип

CVE-2021-21284

CVSS3: 6.8
nvd
около 5 лет назад

In Docker before versions 9.03.15, 20.10.3 there is a vulnerability involving the --userns-remap option in which access to remapped root allows privilege escalation to real root. When using "--userns-remap", if the root user in the remapped namespace has access to the host filesystem they can modify files under "/var/lib/docker/<remapping>" that cause writing files with extended privileges. Versions 20.10.3 and 19.03.15 contain patches that prevent privilege escalation from remapped user.

msrc логотип

CVE-2021-21284

CVSS3: 6.8
msrc
больше 4 лет назад

Описание отсутствует

debian логотип

CVE-2021-21284

CVSS3: 6.8
debian
около 5 лет назад

In Docker before versions 9.03.15, 20.10.3 there is a vulnerability in ...

github логотип

GHSA-7452-xqpj-6rpc

CVSS3: 6.8
github
около 2 лет назад

moby Access to remapped root allows privilege escalation to real root

EPSS

Процентиль: 5%
0.0002
Низкий

2.7 Low

CVSS2

6.8 Medium

CVSS3

Уязвимость CVE-2021-21284