CVE-2016-8867

2016-10-2815:00:00

mitre

www.cve.org

7.5 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

53.1%

JSON

Docker Engine 1.12.2 enabled ambient capabilities with misconfigured capability policies. This allowed malicious images to bypass user permissions to access files within the container filesystem or mounted volumes.

References

www.securityfocus.com/bid/94228

www.securitytracker.com/id/1037203

www.docker.com/docker-cve-database