Lucene search
MitreCVELIST:CVE-2019-13139HistoryAug 22, 2019 - 7:47 p.m.
CVE-2019-13139
2019-08-2219:47:43
mitre
www.cve.org
2
In Docker before 18.09.4, an attacker who is capable of supplying or manipulating the build path for the “docker build” command would be able to gain command execution. An issue exists in the way “docker build” processes remote git URLs, and results in command injection into the underlying “git clone” command, leading to code execution in the context of the user executing the “docker build” command. This occurs because git ref can be misinterpreted as a flag.
References
Related
cbl_mariner
cbl_mariner
CVE-2019-13139 affecting package moby-buildx 0.4.1-3
2021-07-08 21:56:42
veracode
veracode
Command Injection
2019-07-25 07:17:26
nvd
nvd
CVE-2019-13139
2019-08-22 20:15:12
cve
cve
CVE-2019-13139
2019-08-22 20:15:12
debiancve
debiancve
CVE-2019-13139
2019-08-22 20:15:12
ubuntucve
ubuntucve
CVE-2019-13139
2019-08-22 00:00:00
osv
osv
CVE-2019-13139
2019-08-22 20:15:12
docker.io - security update
2019-09-09 00:00:00
redhatcve
redhatcve
CVE-2019-13139
2019-07-23 22:51:45
openvas
openvas
Docker < 18.09.4 RCE Vulnerability
2019-08-27 00:00:00
Debian: Security Advisory (DSA-4521-1)
2019-09-11 00:00:00
prion
prion
Command injection
2019-08-22 20:15:00
nessus
nessus
Photon OS 2.0: Docker PHSA-2020-2.0-0235
2020-05-05 00:00:00
Photon OS 3.0: Docker PHSA-2020-3.0-0085
2020-05-06 00:00:00
Oracle Linux 7 : docker-engine (ELSA-2019-4813)
2023-09-07 00:00:00
amazon
amazon
Medium: docker
2019-11-04 18:12:00
oraclelinux
oraclelinux
docker-engine security update
2019-10-03 00:00:00
debian
debian
[SECURITY] [DSA 4521-1] docker.io security update
2019-09-09 20:55:48
photon
photon
Important Photon OS Security Update - PHSA-2020-0085
2020-05-02 00:00:00
Important Photon OS Security Update - PHSA-2020-3.0-0085
2020-05-02 00:00:00
kitploit
kitploit