| CVE-2017-16539 |
medium |
5.9 |
5.9 |
|
|
|
9y ago |
The DefaultLinuxSpec function in oci/defaults.go in Docker Moby through 17.03.2-ce does not block /proc/scsi pathnames, which allows attackers to trigger data loss (when certain older Linux kernels a… |
| CVE-2026-41568 |
medium |
— |
5.5 |
|
|
|
17d ago |
Docker: Race condition in docker cp allows creation of arbitrary empty files on the host via symlink swap |
| CVE-2021-41089 |
medium |
— |
5.5 |
|
|
|
2y ago |
Moby is an open-source project created by Docker to enable software containerization. A bug was found in Moby (Docker Engine) where attempting to copy files using `docker cp` into a specially-crafted… |
| CVE-2021-41091 |
medium |
— |
5.5 |
|
|
|
2y ago |
Moby is an open-source project created by Docker to enable software containerization. A bug was found in Moby (Docker Engine) where the data directory (typically `/var/lib/docker`) contained subdirec… |
| CVE-2021-21285 |
medium |
— |
5.5 |
|
|
|
2y ago |
In Docker before versions 9.03.15, 20.10.3 there is a vulnerability in which pulling an intentionally malformed Docker image manifest crashes the dockerd daemon. Versions 20.10.3 and 19.03.15 contain… |
| CVE-2021-21284 |
medium |
— |
5.5 |
|
|
|
2y ago |
In Docker before versions 9.03.15, 20.10.3 there is a vulnerability involving the --userns-remap option in which access to remapped root allows privilege escalation to real root. When using "--userns… |
