VYPR
Medium severity5.9NVD Advisory· Published Nov 4, 2017· Updated Jun 17, 2026

CVE-2017-16539

CVE-2017-16539

Description

The DefaultLinuxSpec function in oci/defaults.go in Docker Moby through 17.03.2-ce does not block /proc/scsi pathnames, which allows attackers to trigger data loss (when certain older Linux kernels are used) by leveraging Docker container access to write a "scsi remove-single-device" line to /proc/scsi/scsi, aka SCSI MICDROP.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
github.com/moby/mobyGo
< 17.12.0-ce17.12.0-ce

Affected products

29

Patches

Vulnerability mechanics

References

8

News mentions

0

No linked articles in our index yet.