High severity7.5OSV Advisory· Published Sep 3, 2018· Updated Jun 17, 2026
CVE-2018-16398
CVE-2018-16398
Description
In Twistlock AuthZ Broker 0.1, regular expressions are mishandled, as demonstrated by containers/aa/pause?aaa=\/start to bypass a policy in which "docker start" is allowed but "docker pause" is not allowed.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: =0.1
Patches
Vulnerability mechanics
References
2- github.com/twistlock/authz/issues/50nvdPatchThird Party Advisory
- github.com/twistlock/authz/issues/51nvdPatchThird Party Advisory
News mentions
0No linked articles in our index yet.