Lucene search
Redhat.comRH:CVE-2017-16539HistoryNov 22, 2017 - 9:49 a.m.
CVE-2017-16539
2017-11-2209:49:39
redhat.com
access.redhat.com
13
0.003 Low
EPSS
Percentile
68.8%
The DefaultLinuxSpec function in oci/defaults.go in Docker Moby through 17.03.2-ce does not block /proc/scsi pathnames, which allows attackers to trigger data loss (when certain older Linux kernels are used) by leveraging Docker container access to write a “scsi remove-single-device” line to /proc/scsi/scsi, aka SCSI MICDROP.
Related
prion
prion
Design/Logic Flaw
2017-11-04 17:29:00
osv
osv
CVE-2017-16539
2017-11-04 17:29:00
nvd
nvd
CVE-2017-16539
2017-11-04 17:29:00
cvelist
cvelist
CVE-2017-16539
2017-11-04 17:00:00
cve
cve
CVE-2017-16539
2017-11-04 17:29:00
ubuntucve
ubuntucve
CVE-2017-16539
2017-11-04 00:00:00
veracode
veracode
Unauthorized Access
2017-11-06 02:47:14
debiancve
debiancve
CVE-2017-16539
2017-11-04 17:29:00
suse
suse
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2018:0386-1)
2021-06-09 00:00:00
openSUSE: Security Advisory for docker (openSUSE-SU-2018:0406-1)
2018-02-10 00:00:00
Mageia: Security Advisory (MGASA-2018-0398)
2022-01-28 00:00:00
nessus
nessus
mageia
mageia
Updated docker packages fix security vulnerabilities
2018-10-19 21:00:37
photon
photon
Critical Photon OS Security Update - PHSA-2023-5.0-0045
2023-07-05 00:00:00