Lucene search
GoogleOSV:GHSA-VJ3F-3286-R4PFHistoryMay 18, 2021 - 9:09 p.m.
Path Traversal in Docker
2021-05-1821:09:17
Google
osv.dev
71
0.002 Low
EPSS
Percentile
52.6%
Path traversal vulnerability in Docker before 1.3.3 allows remote attackers to write to arbitrary files and bypass a container protection mechanism via a full pathname in a symlink in an (1) image or (2) build in a Dockerfile.
| CPE | Name | Operator | Version |
|---|---|---|---|
| github.com/docker/docker | lt | 1.3.3 | |
| github.com/moby/moby | lt | 1.3.3 |
References
www.securityfocus.com/archive/1/archive/1/534215/100/0/threaded
access.redhat.com/security/cve/cve-2014-9356
bugzilla.redhat.com/show_bug.cgi?id=1172761
groups.google.com/forum/#%21msg/docker-user/nFAz-B-n4Bw/0wr3wvLsnUwJ
nvd.nist.gov/vuln/detail/CVE-2014-9356
web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-9356
Related
cvelist
cvelist
CVE-2014-9356
2019-12-02 17:07:40
ubuntucve
ubuntucve
CVE-2014-9356
2019-12-02 00:00:00
nvd
nvd
CVE-2014-9356
2019-12-02 18:15:10
veracode
veracode
Directory Traversal
2017-05-03 08:56:04
cbl_mariner
cbl_mariner
CVE-2014-9356 affecting package moby-buildx 0.4.1-3
2021-07-08 21:56:42
prion
prion
Path traversal
2019-12-02 18:15:00
debiancve
debiancve
CVE-2014-9356
2019-12-02 18:15:10
github
github
Path Traversal in Docker
2021-05-18 21:09:17
cve
cve
CVE-2014-9356
2019-12-02 18:15:10
redhat
redhat
(RHSA-2015:0623) Low: docker security, bug fix, and enhancement update
2015-03-05 00:00:00
nessus
nessus
RHEL 7 : docker (RHSA-2015:0623)
2015-03-05 00:00:00
Oracle Linux 6 / 7 : docker (ELSA-2014-3110)
2015-01-02 00:00:00
Fedora 20 : docker-io-1.4.1-6.fc20 (2015-1128)
2015-01-26 00:00:00
securityvulns
securityvulns
Docker 1.3.3 - Security Advisory [11 Dec 2014]
2014-12-22 00:00:00
Docker multiple security vulnerabilities
2014-12-22 00:00:00
archlinux
archlinux
docker: multiple issues
2014-12-15 00:00:00
openvas
openvas
Oracle: Security Advisory (ELSA-2014-3110)
2015-10-06 00:00:00
Docker < 1.3.3 Multiple Vulnerabilities
2021-09-08 00:00:00
Amazon Linux: Security Advisory (ALAS-2014-461)
2015-09-08 00:00:00
oraclelinux
oraclelinux
docker security update
2014-12-30 00:00:00
amazon
amazon
Critical: docker
2014-12-11 16:40:00
fedora
fedora
[SECURITY] Fedora 21 Update: docker-io-1.4.0-1.fc21
2014-12-15 04:32:25
[SECURITY] Fedora 20 Update: docker-io-1.4.1-6.fc20
2015-01-26 02:35:37