Lucene search
Veracode Vulnerability DatabaseVERACODE:32363HistoryOct 05, 2021 - 3:06 a.m.
Privilege Escalation
2021-10-0503:06:38
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
121
0.0005 Low
EPSS
Percentile
17.5%
github.com/moby/moby is vulnerable to privilege escalation. The vulnerability exists due to insecure permission which allows an attacker to traverse directory contents and execute programs.
References
cert-portal.siemens.com/productcert/pdf/ssa-222547.pdf
github.com/moby/moby/commit/f0ab919f518c47240ea0e72d0999576bb8008e64
github.com/moby/moby/security/advisories/GHSA-3fwx-pjgw-3558
lists.fedoraproject.org/archives/list/[email protected]/message/B5Q6G6I4W5COQE25QMC7FJY3I3PAYFBB/
lists.fedoraproject.org/archives/list/[email protected]/message/ZNFADTCHHYWVM6W4NJ6CB4FNFM2VMBIB/
Related
osv
osv
Moby (Docker Engine) Insufficiently restricted permissions on data directory in github.com/docker/docker
2024-06-28 15:28:53
CVE-2021-41091
2021-10-04 21:15:12
Moby (Docker Engine) Insufficiently restricted permissions on data directory
2024-01-31 23:28:58
nessus
nessus
Siemens SCALANCE LPE9403 Incorrect Permission Assignment for Critical Resource (CVE-2021-41091)
2024-01-15 00:00:00
NewStart CGSL CORE 5.04 / MAIN 5.04 : docker-ce Multiple Vulnerabilities (NS-SA-2022-0018)
2022-05-10 00:00:00
RHEL 7 : moby (Unpatched Vulnerability)
2024-05-11 00:00:00
alpinelinux
alpinelinux
CVE-2021-41091
2021-10-04 21:15:12
githubexploit
githubexploit
Exploit for Improper Preservation of Permissions in Mobyproject Moby
2023-05-02 07:25:13
Exploit for Improper Preservation of Permissions in Mobyproject Moby
2024-05-10 04:42:35
cvelist
cvelist
prion
prion
Design/Logic Flaw
2021-10-04 21:15:00
cve
cve
CVE-2021-41091
2021-10-04 21:15:12
ubuntucve
ubuntucve
CVE-2021-41091
2021-10-04 00:00:00
debiancve
debiancve
CVE-2021-41091
2021-10-04 21:15:12
nvd
nvd
CVE-2021-41091
2021-10-04 21:15:12
redhatcve
redhatcve
CVE-2021-41091
2021-11-15 18:14:39
github
github
Moby (Docker Engine) Insufficiently restricted permissions on data directory
2024-01-31 23:28:58
openvas
openvas
Huawei EulerOS: Security Advisory for docker-engine (EulerOS-SA-2022-2311)
2022-09-14 00:00:00
Mageia: Security Advisory (MGASA-2021-0500)
2022-01-28 00:00:00
Huawei EulerOS: Security Advisory for docker (EulerOS-SA-2022-2265)
2022-08-18 00:00:00
mageia
mageia
Updated docker packages fix security vulnerabilities
2021-10-31 14:12:48
amazon
amazon
Medium: docker
2021-09-30 19:22:00
fedora
fedora
[SECURITY] Fedora 34 Update: containerd-1.5.7-1.fc34
2021-10-19 00:37:23
[SECURITY] Fedora 34 Update: moby-engine-20.10.9-1.fc34
2021-10-19 00:37:23
[SECURITY] Fedora 35 Update: moby-engine-20.10.9-1.fc35
2021-10-29 23:24:02
ibm
ibm
Security Bulletin: Multiple vulnerabilities in Docker affect IBM InfoSphere Information Server
2022-10-14 21:28:51
Security Bulletin: Open Source Dependency Vulnerability
2023-05-15 18:56:36
suse
suse
Security update for containerd, docker (moderate)
2022-02-04 00:00:00
Security update for containerd, docker, runc (important)
2021-10-31 00:00:00
Security update for containerd, docker, runc (important)
2021-10-25 00:00:00
thn
thn
Hackers Exploit OpenMetadata Flaws to Mine Crypto on Kubernetes
2024-04-18 05:54:00
ics
ics
Siemens SCALANCE LPE9403 Third-Party Vulnerabilities
2022-06-16 12:00:00
redhat
redhat