High severity7.5NVD Advisory· Published Sep 10, 2018· Updated Jun 17, 2026
CVE-2018-12608
CVE-2018-12608
Description
An issue was discovered in Docker Moby before 17.06.0. The Docker engine validated a client TLS certificate using both the configured client CA root certificate and all system roots on non-Windows systems. This allowed a client with any domain validated certificate signed by a system-trusted root CA (as opposed to one signed by the configured CA root certificate) to authenticate.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
github.com/docker/dockerGo | < 17.06.0-ce | 17.06.0-ce |
Affected products
1Patches
Vulnerability mechanics
References
5- github.com/moby/moby/pull/33182nvdPatchThird Party AdvisoryWEB
- github.com/advisories/GHSA-qrqr-3x5j-2xw9ghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2018-12608ghsaADVISORY
- github.com/moby/moby/commit/190c6e8cf8b893874a33d83f78307f1bed0bfbcdghsaWEB
- github.com/moby/moby/issues/33173ghsaWEB
News mentions
0No linked articles in our index yet.