Skip to main content

Docker Py

1 CVEs product

Monthly

CVE-2014-5277 LIB MEDIUM PATCH This Month

Docker before 1.3.1 and docker-py before 0.5.3 fall back to HTTP when the HTTPS connection to the registry fails, which allows man-in-the-middle attackers to conduct downgrade attacks and obtain. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity.

Docker Information Disclosure Docker Py
NVD
CVSS 2.0
5.0
EPSS
0.7%
EPSS 1% CVSS 5.0
MEDIUM PATCH This Month

Docker before 1.3.1 and docker-py before 0.5.3 fall back to HTTP when the HTTPS connection to the registry fails, which allows man-in-the-middle attackers to conduct downgrade attacks and obtain. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity.

Docker Information Disclosure Docker Py
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy