from 0, < 20.10.5+dfsg1-1+deb11u3
from 0, < 20.10.5+dfsg1-1+deb11u3
CRITICAL9.8CVE-2019-14271Moby Docker cp broken with debian containers in github.com/docker/docker from 0, < 18.09.1+dfsg1-9
CRITICAL9.8Arbitrary Code Execution in github.com/docker/docker
from 0, < 1.3.3~dfsg1-1
CRITICAL9.8An issue was found in Docker before 1.6.0.
from 0, < 1.6.0+dfsg1-1
HIGH8.8Moby has AuthZ plugin bypass when provided oversized request bodies in github.com/docker/docker
from 0
HIGH8.4BuildKit's Malicious frontend can cause file escape outside of storage root in github.com/moby/buildkit
from 0
HIGH8.4Arbitrary File Write in Libcontainer in github.com/docker/docker
from 0, < 1.6.1+dfsg1-1
HIGH8.4Information Exposure in Docker Engine in github.com/docker/docker
from 0, < 1.6.1+dfsg1-1
HIGH8.4docker.io - security update
from 0, < 18.09.1+dfsg1-7.1+deb10u1
HIGH8.4docker.io - security update
from 0, < 18.09.1+dfsg1-8
HIGH8.1Moby Race Condition vulnerability in github.com/moby/moby
from 0
HIGH8.1Docker before 1.3 does not properly validate image IDs, which allows remote attackers to redirect to another image through the loading of u…
from 0, < 1.3.0~dfsg1-1
HIGH7.8Docker before 1.5 allows local users to have unspecified impact via vectors involving unsafe /tmp usage.
from 0, < 1.6.0+dfsg1-1
HIGH7.5BuildKit Git URL subdir component can cause access to restricted files in github.com/moby/buildkit
from 0
HIGH7.5Docker Authentication Bypass
from 0, < 18.03.1+dfsg1-2
HIGH7.5Docker Swarm encrypted overlay network may be unauthenticated in github.com/docker/docker
from 0
HIGH7.5Secret insertion into debug log in Docker
from 0, < 18.09.1+dfsg1-8
HIGH7.5Docker Engine before 1.8.3 and CS Docker Engine before 1.6.2-CS7 does not properly validate and extract the manifest object from its JSON r…
from 0, < 1.8.3~ds1-1
HIGH7.5In Docker through 18.06.1-ce-rc2, the API endpoints behind the 'docker cp' command are vulnerable to a symlink-exchange attack with Directo…
from 0, < 18.09.1+dfsg1-7.1
HIGH7.3Arbitrary Code Execution in Docker in github.com/docker/docker
from 0, < 1.3.2~dfsg1-1
HIGH7.2Docker: Race condition in docker cp allows bind mount redirection to host path
from 0
HIGH7.2Docker: `PUT /containers/{id}/archive` executes container binary on the host
from 0
MEDIUM6.9Classic builder cache poisoning in github.com/docker/docker
from 0
MEDIUM6.8Moby has an Off-by-one error in its plugin privilege validation in github.com/docker/docker
from 0
MEDIUM6.8moby Access to remapped root allows privilege escalation to real root
from 0, < 20.10.3+dfsg1-1
MEDIUM6.8Docker Swarm encrypted overlay network traffic may be unencrypted in github.com/docker/docker
from 0
MEDIUM6.8Docker Swarm encrypted overlay network with a single endpoint is unauthenticated in github.com/docker/docker
from 0
MEDIUM6.5Moby Race Condition vulnerability in github.com/moby/moby
from 0
MEDIUM6.5moby docker daemon crash during image pull of malicious image
from 0, < 20.10.3+dfsg1-1
MEDIUM6.5Memory exhaustion in github.com/vbatts/tar-split
from 0, < 18.03.1+dfsg1-2
MEDIUM6.5Directory Traversal in Docker in github.com/docker/docker
from 0, < 1.3.3~dfsg1-1
MEDIUM6.4Information Exposure in RunC in github.com/opencontainers/runc
from 0, < 1.13.1~ds1-2
MEDIUM6.1Docker: Race condition in docker cp allows creation of arbitrary empty files on the host via symlink swap
from 0
MEDIUM6.1docker.io - security update
from 0, < 19.03.13+dfsg2-1
MEDIUM6.1docker.io - security update
from 0, < 18.09.1+dfsg1-7.1+deb10u3
MEDIUM6.0docker.io - security update
from 0, < 19.03.11+dfsg1-1
MEDIUM6.0docker.io - security update
from 0, < 18.09.1+dfsg1-7.1+deb10u2
MEDIUM5.9Data exfiltration from internal networks in github.com/docker/docker
from 0
MEDIUM5.9Moby (Docker Engine) Insufficiently restricted permissions on data directory in github.com/docker/docker
from 0, < 20.10.5+dfsg1-1+deb11u1
MEDIUM5.9Docker Moby /proc/scsi Path Exposure Allows Host Data Loss (SCSI MICDROP)
from 0, < 1.13.1~ds3-1
MEDIUM5.9Path Traversal in Docker in github.com/docker/docker
from 0, < 1.3.3~dfsg1-1
MEDIUM5.5Docker Engine before 1.8.3 and CS Docker Engine before 1.6.2-CS7 do not use a globally unique identifier to store image layers, which makes…
from 0, < 1.8.3~ds1-1
MEDIUM5.4Docker CLI leaks private registry credentials to registry-1.docker.io
from 0, < 20.10.5+dfsg1-1+deb11u1
MEDIUM5.3Docker supplementary group permissions not set up properly, allowing attackers to bypass primary group restrictions in github.com/docker/docker
from 0
MEDIUM5.3A vulnerability exists in Docker before 1.2 via container names, which may collide with and override container IDs.
from 0, < 1.2.0~dfsg1-1
MEDIUM5.3The default OCI linux spec in oci/defaults{_linux}.go in Docker/Moby from 1.11 to current does not block /proc/acpi pathnames.
from 0, < 18.06.1+dfsg1-1
MEDIUM5.3Man-in-the-Middle (MitM) in github.com/docker/docker
from 0, < 1.3.1~dfsg1-1
MEDIUM5.2containerd-shim API Exposed to Host Network Containers in github.com/containerd/containerd
from 0, < 20.10.0~rc1+dfsg2-1
MEDIUM5.1Arbitrary File Override in Docker Engine in github.com/docker/docker
from 0, < 1.6.1+dfsg1-1
MEDIUM4.9Docker Engine before 18.09 allows attackers to cause a denial of service (dockerd memory consumption) via a large integer in a --cpuset-mem…
from 0, < 18.09.1+dfsg1-2
MEDIUM4.7IPv6 enabled on IPv4-only network interfaces in github.com/docker/docker
from 0
LOW3.3Moby firewalld reload removes bridge network isolation in github.com/docker/docker
from 0
LOW2.8Unexpected chmod of host files via 'docker cp' in Moby Docker Engine in github.com/docker/docker
from 0, < 20.10.5+dfsg1-1+deb11u1
—Access Restriction Bypass in Docker in github.com/docker/docker
from 0, < 1.3.2~dfsg1-1
—Symlink Attack in Libcontainer and Docker Engine in github.com/docker/docker
from 0, < 1.6.1+dfsg1-1