VYPR

Docker

by Docker

Source repositories

CVEs (27)

  • CVE-2015-3630May 18, 2015
    risk 0.00cvss epss 0.01

    Docker Engine before 1.6.1 uses weak permissions for (1) /proc/asound, (2) /proc/timer_stats, (3) /proc/latency_stats, and (4) /proc/fs, which allows local users to modify the host, obtain sensitive information, and perform protocol downgrade attacks via a crafted image.

  • CVE-2015-3627May 18, 2015
    risk 0.00cvss epss 0.01

    Libcontainer and Docker Engine before 1.6.1 opens the file-descriptor passed to the pid-1 process before performing the chroot, which allows local users to gain privileges via a symlink attack in an image.

  • CVE-2014-9358Dec 16, 2014
    risk 0.00cvss epss 0.03

    Docker before 1.3.3 does not properly validate image IDs, which allows remote attackers to conduct path traversal attacks and spoof repositories via a crafted image in a (1) "docker load" operation or (2) "registry communications."

  • CVE-2014-6408Dec 12, 2014
    risk 0.00cvss epss 0.03

    Docker 1.3.0 through 1.3.1 allows remote attackers to modify the default run profile of image containers and possibly bypass the container by applying unspecified security options to an image.

  • CVE-2014-6407Dec 12, 2014
    risk 0.00cvss epss 0.05

    Docker before 1.3.2 allows remote attackers to write to arbitrary files and execute arbitrary code via a (1) symlink or (2) hard link attack in an image archive in a (a) pull or (b) load operation.

  • CVE-2014-5277Nov 17, 2014
    risk 0.00cvss epss 0.02

    Docker before 1.3.1 and docker-py before 0.5.3 fall back to HTTP when the HTTPS connection to the registry fails, which allows man-in-the-middle attackers to conduct downgrade attacks and obtain authentication and image data by leveraging a network position between the client…

  • CVE-2014-3499Jul 11, 2014
    risk 0.00cvss epss 0.00

    Docker 1.0.0 uses world-readable and world-writable permissions on the management socket, which allows local users to gain privileges via unspecified vectors.

Page 2 of 2