High severity7.8NVD Advisory· Published Apr 4, 2017· Updated May 13, 2026
CVE-2017-7412
CVE-2017-7412
Description
NixOS 17.03 before 17.03.887 has a world-writable Docker socket, which allows local users to gain privileges by executing docker commands.
Affected products
1Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
3- github.com/NixOS/nixpkgs/commit/6c59d851e2967410cc8fb6ba3f374b1d3efa988envdPatchThird Party Advisory
- github.com/NixOS/nixpkgs/commit/fa4fe7110566d8370983fa81f2b04a833339236dnvdPatchThird Party Advisory
- lists.science.uu.nl/pipermail/nix-dev/2017-April/023329.htmlnvdBroken Link
News mentions
0No linked articles in our index yet.