| CVE-2026-42306 |
high |
— |
8.0 |
|
|
|
16d ago |
Docker: Race condition in docker cp allows bind mount redirection to host path |
| CVE-2026-41567 |
high |
— |
8.0 |
|
|
|
16d ago |
Docker: `PUT /containers/{id}/archive` executes container binary on the host |
| CVE-2026-34040 |
high |
— |
8.0 |
|
|
|
2mo ago |
Moby has AuthZ plugin bypass when provided oversized request bodies |
| CVE-2017-16539 |
medium |
5.9 |
5.9 |
|
|
|
9y ago |
The DefaultLinuxSpec function in oci/defaults.go in Docker Moby through 17.03.2-ce does not block /proc/scsi pathnames, which allows attackers to trigger data loss (when certain older Linux kernels a… |
| CVE-2026-41568 |
medium |
— |
5.5 |
|
|
|
16d ago |
Docker: Race condition in docker cp allows creation of arbitrary empty files on the host via symlink swap |
| CVE-2021-41089 |
medium |
— |
5.5 |
|
|
|
2y ago |
Moby is an open-source project created by Docker to enable software containerization. A bug was found in Moby (Docker Engine) where attempting to copy files using `docker cp` into a specially-crafted… |
| CVE-2021-41091 |
medium |
— |
5.5 |
|
|
|
2y ago |
Moby is an open-source project created by Docker to enable software containerization. A bug was found in Moby (Docker Engine) where the data directory (typically `/var/lib/docker`) contained subdirec… |
| CVE-2021-21285 |
medium |
— |
5.5 |
|
|
|
2y ago |
In Docker before versions 9.03.15, 20.10.3 there is a vulnerability in which pulling an intentionally malformed Docker image manifest crashes the dockerd daemon. Versions 20.10.3 and 19.03.15 contain… |
| CVE-2021-21284 |
medium |
— |
5.5 |
|
|
|
2y ago |
In Docker before versions 9.03.15, 20.10.3 there is a vulnerability involving the --userns-remap option in which access to remapped root allows privilege escalation to real root. When using "--userns… |
| CVE-2026-33997 |
unknown |
— |
— |
|
|
|
2mo ago |
Moby is an open source container framework. Prior to version 29.3.1, a security vulnerability has been detected that allows plugins privilege validation to be bypassed during docker plugin install. D… |
| CVE-2024-36623 |
unknown |
— |
— |
|
|
|
2y ago |
moby through v25.0.3 has a Race Condition vulnerability in the streamformatter package which can be used to trigger multiple concurrent write operations resulting in data corruption or application cr… |
| CVE-2024-36620 |
unknown |
— |
— |
|
|
|
2y ago |
moby v25.0.0 - v26.0.2 is vulnerable to NULL Pointer Dereference via daemon/images/image_history.go. |
| CVE-2024-36621 |
unknown |
— |
— |
|
|
|
2y ago |
moby v25.0.5 is affected by a Race Condition in builder/builder-next/adapters/snapshot/layer.go. The vulnerability could be used to trigger concurrent builds that call the EnsureLayer function result… |
| CVE-2024-41110 |
unknown |
— |
— |
|
|
|
2y ago |
Moby is an open-source project created by Docker for software containerization. A security vulnerability has been detected in certain versions of Docker Engine, which could allow an attacker to bypas… |
| CVE-2022-24769 |
unknown |
— |
— |
|
|
|
2y ago |
Moby (Docker Engine) started with non-empty inheritable Linux process capabilities in github.com/docker/docker |
| CVE-2024-24557 |
unknown |
— |
— |
|
|
|
2y ago |
Moby is an open-source project created by Docker to enable software containerization. The classic builder cache system is prone to cache poisoning if the image is built FROM scratch. Also, changes to… |
| CVE-2020-27534 |
unknown |
— |
— |
|
|
|
2y ago |
util/binfmt_misc/check.go in Builder in Docker Engine before 19.03.9 calls os.OpenFile with a potentially unsafe qemu-check temporary pathname, constructed with an empty first argument in an ioutil.T… |
| CVE-2019-14271 |
unknown |
— |
— |
|
|
|
4y ago |
In Docker 19.03.x before 19.03.1 linked against the GNU C Library (aka glibc), code injection can occur when the nsswitch facility dynamically loads a library inside a chroot that contains the conten… |
