exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 4

CVE-2015-9259

почти 8 лет назад

In Docker Notary before 0.1, the checkRoot function in gotuf/client/client.go does not check expiry of root.json files, despite a comment stating that it does. Even if a user creates a new root.json file after a key compromise, an attacker can produce update files referring to an old root.json file.

CVSS3: 9.8

EPSS: Низкий

CVE-2015-9259

почти 8 лет назад

In Docker Notary before 0.1, the checkRoot function in gotuf/client/client.go does not check expiry of root.json files, despite a comment stating that it does. Even if a user creates a new root.json file after a key compromise, an attacker can produce update files referring to an old root.json file.

CVSS3: 9.8

EPSS: Низкий

CVE-2015-9259

почти 8 лет назад

In Docker Notary before 0.1, the checkRoot function in gotuf/client/cl ...

CVSS3: 9.8

EPSS: Низкий

GHSA-2m6m-p8vh-r2f9

больше 3 лет назад

In Docker Notary before 0.1, the checkRoot function in gotuf/client/client.go does not check expiry of root.json files, despite a comment stating that it does. Even if a user creates a new root.json file after a key compromise, an attacker can produce update files referring to an old root.json file.

CVSS3: 9.8

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2015-9259 In Docker Notary before 0.1, the checkRoot function in gotuf/client/client.go does not check expiry of root.json files, despite a comment stating that it does. Even if a user creates a new root.json file after a key compromise, an attacker can produce update files referring to an old root.json file.	CVSS3: 9.8	1% Низкий	почти 8 лет назад
CVE-2015-9259 In Docker Notary before 0.1, the checkRoot function in gotuf/client/client.go does not check expiry of root.json files, despite a comment stating that it does. Even if a user creates a new root.json file after a key compromise, an attacker can produce update files referring to an old root.json file.	CVSS3: 9.8	1% Низкий	почти 8 лет назад
CVE-2015-9259 In Docker Notary before 0.1, the checkRoot function in gotuf/client/cl ...	CVSS3: 9.8	1% Низкий	почти 8 лет назад
GHSA-2m6m-p8vh-r2f9 In Docker Notary before 0.1, the checkRoot function in gotuf/client/client.go does not check expiry of root.json files, despite a comment stating that it does. Even if a user creates a new root.json file after a key compromise, an attacker can produce update files referring to an old root.json file.	CVSS3: 9.8	1% Низкий	больше 3 лет назад

Уязвимостей на страницу