Skip to main content
CVE-2015-2667 HIGH POC This Week

Untrusted search path vulnerability in GNS3 1.2.3 allows local users to gain privileges via a Trojan horse uuid.dll in an unspecified directory. Rated high severity (CVSS 7.2), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Gns3
NVD
CVSS 2.0
7.2
EPSS
0.2%
CVE-2015-1868 HIGH This Week

The label decompression functionality in PowerDNS Recursor 3.5.x, 3.6.x before 3.6.3, and 3.7.x before 3.7.2 and Authoritative (Auth) Server 3.2.x, 3.3.x before 3.3.2, and 3.4.x before 3.4.4 allows. Rated high severity (CVSS 7.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Denial Of Service Authoritative Fedora Recursor
NVD
CVSS 2.0
7.8
EPSS
0.5%
CVE-2015-3629 HIGH PATCH This Week

Libcontainer 1.6.0, as used in Docker Engine, allows local users to escape containerization ("mount namespace breakout") and write to arbitrary file on the host system via a symlink attack in an. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity.

Docker Information Disclosure Libcontainer Opensuse
NVD
CVSS 3.1
7.8
EPSS
0.2%
CVE-2015-3630 HIGH PATCH This Week

Docker Engine before 1.6.1 uses weak permissions for (1) /proc/asound, (2) /proc/timer_stats, (3) /proc/latency_stats, and (4) /proc/fs, which allows local users to modify the host, obtain sensitive. Rated high severity (CVSS 7.2), this vulnerability is low attack complexity.

Docker Privilege Escalation
NVD
CVSS 2.0
7.2
EPSS
0.1%
CVE-2015-3627 HIGH PATCH This Week

Libcontainer and Docker Engine before 1.6.1 opens the file-descriptor passed to the pid-1 process before performing the chroot, which allows local users to gain privileges via a symlink attack in an. Rated high severity (CVSS 7.2), this vulnerability is low attack complexity.

Docker Information Disclosure Libcontainer
NVD
CVSS 2.0
7.2
EPSS
0.1%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy