Skip to main content

Docker

818 CVEs product

Monthly

CVE-2024-47180 HIGH This Week

Shields.io is a service for concise, consistent, and legible badges in SVG and raster format. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Docker
NVD GitHub
CVSS 3.1
8.8
EPSS
1.0%
CVE-2024-47179 HIGH This Week

RSSHub is an RSS network. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

RCE Docker
NVD GitHub
CVSS 3.1
8.8
EPSS
0.7%
CVE-2024-7387 Go CRITICAL Act Now

A flaw was found in openshift/builder. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Command Injection Privilege Escalation Path Traversal Docker
NVD GitHub
CVSS 3.1
9.1
EPSS
0.8%
CVE-2024-8696 HIGH This Week

A remote code execution (RCE) vulnerability via crafted extension publisher-url/additional-urls could be abused by a malicious extension in Docker Desktop before 4.34.2. Rated high severity (CVSS 8.9), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

RCE XSS Docker Desktop
NVD
CVSS 4.0
8.9
EPSS
1.2%
CVE-2024-8695 CRITICAL Act Now

A remote code execution (RCE) vulnerability via crafted extension description/changelog could be abused by a malicious extension in Docker Desktop before 4.34.2. Rated critical severity (CVSS 9.0), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

RCE XSS Docker Desktop
NVD
CVSS 4.0
9.0
EPSS
1.3%
CVE-2024-20483 HIGH This Week

Multiple vulnerabilities in Cisco Routed PON Controller Software, which runs as a docker container on hardware that is supported by Cisco IOS XR Software, could allow an authenticated, remote. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Apple Cisco Command Injection Docker Ios Xr
NVD
CVSS 3.1
7.2
EPSS
1.1%
CVE-2024-45313 MEDIUM PATCH This Month

Overleaf is a web-based collaborative LaTeX editor. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity.

Authentication Bypass Docker Overleaf
NVD GitHub
CVSS 3.1
5.4
EPSS
0.3%
CVE-2024-42364 MEDIUM This Month

Homepage is a highly customizable homepage with Docker and service API integrations. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Docker Homepage
NVD GitHub
CVSS 3.1
6.5
EPSS
0.2%
CVE-2024-41960 MEDIUM PATCH This Month

mailcow: dockerized is an open source groupware/email suite based on docker. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. This Cross-Site Scripting (XSS) vulnerability could allow attackers to inject malicious scripts into web pages viewed by other users.

XSS Docker Mailcow
NVD GitHub
CVSS 3.1
4.8
EPSS
0.3%
CVE-2024-41959 MEDIUM PATCH This Month

mailcow: dockerized is an open source groupware/email suite based on docker. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Cross-Site Scripting (XSS) vulnerability could allow attackers to inject malicious scripts into web pages viewed by other users.

XSS Docker Mailcow
NVD GitHub
CVSS 3.1
6.1
EPSS
0.3%
CVE-2024-41958 HIGH PATCH This Week

mailcow: dockerized is an open source groupware/email suite based on docker. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity.

Authentication Bypass Docker Mailcow
NVD GitHub
CVSS 3.1
7.2
EPSS
1.0%
CVE-2024-41664 MEDIUM This Month

Canarytokens help track activity and actions on a network. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

SSRF Docker
NVD GitHub
CVSS 3.1
5.4
EPSS
0.4%
CVE-2024-41663 LOW Monitor

Canarytokens help track activity and actions on a network. Rated low severity (CVSS 3.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Docker
NVD GitHub
CVSS 3.1
3.5
EPSS
0.3%
CVE-2024-6222 HIGH This Week

In Docker Desktop before v4.29.0, an attacker who has gained access to the Docker Desktop VM through a container breakout can further escape to the host by passing extensions and dashboard related. Rated high severity (CVSS 7.3), this vulnerability is low attack complexity. No vendor patch available.

Apple Information Disclosure Docker Microsoft Desktop
NVD
CVSS 4.0
7.3
EPSS
0.6%
CVE-2024-5652 MEDIUM This Month

In Docker Desktop on Windows before v4.31.0 allows a user in the docker-users group to cause a Windows Denial-of-Service through the exec-path Docker daemon config option in Windows containers mode. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Docker Denial Of Service Microsoft Desktop
NVD
CVSS 3.1
5.5
EPSS
0.4%
CVE-2024-38363 HIGH This Week

Airbyte is a data integration platform for ELT pipelines. Rated high severity (CVSS 8.5), this vulnerability is remotely exploitable. No vendor patch available.

RCE Ssti Docker
NVD GitHub
CVSS 3.1
8.5
EPSS
0.7%
CVE-2024-35139 MEDIUM This Month

IBM Security Access Manager Docker 10.0.0.0 through 10.0.7.1 could allow a local user to obtain sensitive information from the container due to incorrect default permissions. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Docker IBM Security Access Manager
NVD
CVSS 3.1
5.5
EPSS
0.2%
CVE-2024-35137 MEDIUM This Month

IBM Security Access Manager Docker 10.0.0.0 through 10.0.7.1 could allow a local user to possibly elevate their privileges due to sensitive configuration information being exposed. Rated medium severity (CVSS 6.2), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

IBM Information Disclosure Docker Security Access Manager
NVD
CVSS 3.1
6.2
EPSS
0.3%
CVE-2024-4680 PyPI HIGH POC This Week

A vulnerability in zenml-io/zenml version 0.56.3 allows attackers to reuse old session credentials or session IDs due to insufficient session expiration. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Docker Zenml
NVD
CVSS 3.1
8.8
EPSS
0.4%
CVE-2024-35142 HIGH This Week

IBM Security Verify Access Docker 10.0.0 through 10.0.6 could allow a local user to escalate their privileges due to execution of unnecessary privileges. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Docker IBM Security Verify Access Docker
NVD
CVSS 3.1
7.8
EPSS
0.2%
CVE-2024-35140 HIGH This Week

IBM Security Verify Access Docker 10.0.0 through 10.0.6 could allow a local user to escalate their privileges due to improper certificate validation. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

IBM Privilege Escalation Docker Security Verify Access Docker
NVD
CVSS 3.1
7.8
EPSS
0.1%
CVE-2024-29895 CRITICAL POC THREAT Act Now

Cacti provides an operational monitoring and fault management framework. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

PHP Command Injection Docker
NVD GitHub
CVSS 3.1
10.0
EPSS
94.3%
CVE-2024-34067 PHP MEDIUM PATCH This Month

Pterodactyl is a free, open-source game server management panel built with PHP, React, and Go. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Cross-Site Scripting (XSS) vulnerability could allow attackers to inject malicious scripts into web pages viewed by other users.

XSS Docker Panel
NVD GitHub
CVSS 3.1
6.1
EPSS
0.5%
CVE-2024-4159 MEDIUM This Month

Brocade SANnav before v2.3.0a lacks protection mechanisms on port 2377/TCP and 7946/TCP, which could allow an unauthenticated attacker to sniff the SANnav Docker information. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Docker Brocade Sannav
NVD
CVSS 3.1
5.3
EPSS
0.5%
CVE-2024-31994 MEDIUM POC PATCH This Month

Mealie is a self hosted recipe manager and meal planner. Rated medium severity (CVSS 6.5), this vulnerability is low attack complexity. Public exploit code available.

Docker Denial Of Service Mealie
NVD GitHub
CVSS 3.1
6.5
EPSS
0.3%
CVE-2024-29967 MEDIUM This Month

In Brocade SANnav before Brocade SANnav v2.31 and v2.3.0a, it was observed that Docker instances inside the appliance have insecure mount points, allowing reading and writing access to sensitive. Rated medium severity (CVSS 6.0), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Docker Brocade Sannav
NVD
CVSS 3.1
6.0
EPSS
0.2%
CVE-2024-29964 MEDIUM This Month

Brocade SANnav versions before v2.3.0a do not correctly set permissions on files, including docker files. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Docker Brocade Sannav
NVD
CVSS 3.1
6.5
EPSS
0.5%
CVE-2024-29963 LOW Monitor

Brocade SANnav OVA before v2.3.1, and v2.3.0a, contain hardcoded TLS keys used by Docker. Rated low severity (CVSS 3.8), this vulnerability is low attack complexity. No vendor patch available.

Authentication Bypass Docker Brocade Sannav
NVD
CVSS 3.1
3.8
EPSS
0.2%
CVE-2024-1961 HIGH This Week

vertaai/modeldb is vulnerable to a path traversal attack due to improper sanitization of user-supplied file paths in its file upload functionality. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Docker Path Traversal RCE Java File Upload
NVD
CVSS 3.0
8.8
EPSS
1.0%
CVE-2024-31204 MEDIUM POC This Month

mailcow: dockerized is an open source groupware/email suite based on docker. Rated medium severity (CVSS 6.1). Public exploit code available and no vendor patch available.

XSS Docker Mailcow
NVD GitHub
CVSS 3.1
6.1
EPSS
8.2%
CVE-2024-30270 MEDIUM POC THREAT This Month

mailcow: dockerized is an open source groupware/email suite based on docker. Rated medium severity (CVSS 6.2), this vulnerability is remotely exploitable. Public exploit code available and no vendor patch available.

RCE Path Traversal Docker Mailcow
NVD GitHub
CVSS 3.1
6.2
EPSS
27.3%
CVE-2024-29735 PyPI MEDIUM PATCH This Month

Improper Preservation of Permissions vulnerability in Apache Airflow.8.2 through 2.8.3. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable.

Apache Information Disclosure Docker Airflow
NVD GitHub
CVSS 3.1
5.3
EPSS
1.5%
CVE-2024-24562 MEDIUM PATCH This Month

vantage6-UI is the official user interface for the vantage6 server. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Exposure of Resource to Wrong Sphere vulnerability could allow attackers to access resources from an unintended security context.

Docker Information Disclosure Nginx Vantage6 Ui
NVD GitHub
CVSS 3.1
5.3
EPSS
0.3%
CVE-2024-28236 Go MEDIUM PATCH This Month

Vela is a Pipeline Automation (CI/CD) framework built on Linux container technology written in Golang. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. This Exposure of Sensitive Information vulnerability could allow attackers to access sensitive data that should not be disclosed.

Information Disclosure Docker Worker
NVD GitHub
CVSS 3.1
6.5
EPSS
0.7%
CVE-2024-2216 Maven HIGH This Week

A missing permission check in an HTTP endpoint in Jenkins docker-build-step Plugin 2.11 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified TCP or Unix. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Authentication Bypass Docker Jenkins Docker Build Step
NVD
CVSS 3.1
8.8
EPSS
0.8%
CVE-2024-2215 Maven MEDIUM This Month

A cross-site request forgery (CSRF) vulnerability in Jenkins docker-build-step Plugin 2.11 and earlier allows attackers to connect to an attacker-specified TCP or Unix socket URL, and to reconfigure. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

CSRF Docker Jenkins Docker Build Step
NVD
CVSS 3.1
6.1
EPSS
0.4%
CVE-2024-1355 CRITICAL Act Now

A command injection vulnerability was identified in GitHub Enterprise Server that allowed an attacker with an editor role in the Management Console to gain admin SSH access to the appliance via the. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Command Injection Docker Enterprise Server
NVD GitHub
CVSS 3.1
9.1
EPSS
2.4%
CVE-2024-23756 HIGH POC This Week

The HTTP PUT and DELETE methods are enabled in the Plone official Docker version 5.2.13 (5221), allowing unauthenticated attackers to execute dangerous actions such as uploading files to the server. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Docker Plone
NVD GitHub
CVSS 3.1
7.5
EPSS
0.6%
CVE-2024-23054 CRITICAL POC Act Now

An issue in Plone Docker Official Image 5.2.13 (5221) open-source software that could allow for remote code execution due to a package listed in ++plone++static/components not existing in the public. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Node.js RCE Docker Plone Docker Official Image
NVD GitHub VulDB
CVSS 3.1
9.8
EPSS
1.7%
CVE-2024-24760 HIGH PATCH This Week

mailcow is a dockerized email package, with multiple containers linked in one bridged network. Rated high severity (CVSS 7.3), this vulnerability is low attack complexity.

Information Disclosure Docker Mailcow
NVD GitHub
CVSS 3.1
7.3
EPSS
0.9%
CVE-2024-24756 HIGH POC PATCH This Week

Crafatar serves Minecraft avatars based on the skin for use in external applications. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Path Traversal Docker Crafatar
NVD GitHub
CVSS 3.1
7.5
EPSS
0.9%
CVE-2024-22200 MEDIUM PATCH This Month

vantage6-UI is the User Interface for vantage6. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Exposure of Sensitive Information vulnerability could allow attackers to access sensitive data that should not be disclosed.

Docker Information Disclosure Nginx Vantage6 Ui
NVD GitHub
CVSS 3.1
5.3
EPSS
0.3%
CVE-2024-21653 PyPI CRITICAL PATCH Act Now

The vantage6 technology enables to manage and deploy privacy enhancing technologies like Federated Learning (FL) and Multi-Party Computation (MPC). Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Authentication Bypass Docker Vantage6
NVD GitHub
CVSS 3.1
9.8
EPSS
0.5%
CVE-2024-23055 MEDIUM POC This Month

An issue in Plone Docker Official Image 5.2.13 (5221) open-source software allows for remote code execution via improper validation of input by the HOST headers. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

RCE Docker Plone Docker Official Image
NVD GitHub VulDB
CVSS 3.1
6.1
EPSS
1.2%
CVE-2023-38267 MEDIUM PATCH This Month

IBM Security Access Manager Appliance (IBM Security Verify Access Appliance 10.0.0.0 through 10.0.6.1 and IBM Security Verify Access Docker 10.0.6.1) could allow a local user to possibly elevate. Rated medium severity (CVSS 6.2), this vulnerability is no authentication required, low attack complexity.

IBM Information Disclosure Docker Security Verify Access Security Verify Access Docker
NVD
CVSS 3.1
6.2
EPSS
0.0%
CVE-2023-31003 HIGH PATCH This Week

IBM Security Access Manager Container (IBM Security Verify Access Appliance 10.0.0.0 through 10.0.6.1 and IBM Security Verify Access Docker 10.0.6.1) could allow a local user to obtain root access. Rated high severity (CVSS 8.4), this vulnerability is no authentication required, low attack complexity.

IBM Information Disclosure Docker Security Verify Access Security Verify Access Docker
NVD
CVSS 3.1
8.4
EPSS
0.0%
CVE-2023-31001 MEDIUM PATCH This Month

IBM Security Access Manager Container (IBM Security Verify Access Appliance 10.0.0.0 through 10.0.6.1 and IBM Security Verify Access Docker 10.0.6.1) temporarily stores sensitive information in files. Rated medium severity (CVSS 5.1), this vulnerability is no authentication required.

IBM Information Disclosure Docker Security Verify Access Security Verify Access Docker
NVD
CVSS 3.1
5.1
EPSS
0.0%
CVE-2023-48311 PyPI MEDIUM PATCH This Month

dockerspawner is a tool to spawn JupyterHub single user servers in Docker containers. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity.

Information Disclosure Docker Dockerspawner
NVD GitHub
CVSS 3.1
4.3
EPSS
0.6%
CVE-2023-47633 Go HIGH POC PATCH This Week

Traefik is an open source HTTP reverse proxy and load balancer. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service Docker Traefik
NVD GitHub
CVSS 3.1
7.5
EPSS
1.3%
CVE-2023-49947 HIGH PATCH This Week

Forgejo before 1.20.5-1 allows 2FA bypass when docker login uses Basic Authentication. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Incorrect Authorization vulnerability could allow attackers to bypass authorization checks to access restricted resources.

Authentication Bypass Docker Forgejo
NVD
CVSS 3.1
7.5
EPSS
0.6%
CVE-2023-49077 MEDIUM This Month

Mailcow: dockerized is an open source groupware/email suite based on docker. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Docker Mailcow
NVD GitHub
CVSS 3.1
6.1
EPSS
0.4%
CVE-2023-5815 HIGH POC PATCH THREAT Act Now

The News & Blog Designer Pack - WordPress Blog Plugin - (Blog Post Grid, Blog Post Slider, Blog Post Carousel, Blog Post Ticker, Blog Post Masonry) plugin for WordPress is vulnerable to Remote Code. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required. Public exploit code available and EPSS exploitation probability 43.2%.

PHP LFI RCE Docker WordPress +1
NVD VulDB
CVSS 3.1
8.1
EPSS
43.2%
Threat
4.4
CVE-2023-49103 HIGH POC KEV THREAT This Week

An issue was discovered in ownCloud owncloud/graphapi 0.2.x before 0.2.1 and 0.3.x before 0.3.1. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure PHP Docker Graph Api
NVD GitHub
CVSS 3.1
7.5
EPSS
78.4%
CVE-2023-40453 MEDIUM POC This Month

Docker Machine through 0.16.2 allows an attacker, who has control of a worker node, to provide crafted version data, which might potentially trick an administrator into performing an unsafe action. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service Docker Machine
NVD GitHub
CVSS 3.1
6.5
EPSS
0.9%
CVE-2023-45821 Go MEDIUM PATCH This Month

Artifact Hub is a web-based application that enables finding, installing, and publishing packages and configurations for CNCF projects. Rated medium severity (CVSS 6.3), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Docker Hub
NVD GitHub
CVSS 3.1
6.3
EPSS
0.2%
CVE-2023-43069 HIGH This Week

Dell SmartFabric Storage Software v1.4 (and earlier) contain(s) an OS Command Injection Vulnerability in the CLI. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Command Injection Dell Docker Smartfabric Storage Software
NVD
CVSS 3.1
7.8
EPSS
0.5%
CVE-2023-20235 HIGH This Week

A vulnerability in the on-device application development workflow feature for the Cisco IOx application hosting infrastructure in Cisco IOS XE Software could allow an authenticated, remote attacker. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Docker Path Traversal Apple Cisco Information Disclosure +1
NVD
CVSS 3.1
8.8
EPSS
0.5%
CVE-2023-5166 MEDIUM This Month

Docker Desktop before 4.23.0 allows Access Token theft via a crafted extension icon URL.23.0. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Docker Docker Desktop
NVD
CVSS 3.1
6.5
EPSS
0.7%
CVE-2023-5165 HIGH This Week

Docker Desktop before 4.23.0 allows an unprivileged user to bypass Enhanced Container Isolation (ECI) restrictions via the debug shell which remains accessible for a short time window after launching. Rated high severity (CVSS 8.8), this vulnerability is low attack complexity. No vendor patch available.

Authentication Bypass Docker Docker Desktop
NVD
CVSS 3.1
8.8
EPSS
0.2%
CVE-2023-0633 HIGH This Week

In Docker Desktop on Windows before 4.12.0 an argument injection to installer may result in local privilege escalation (LPE).12.0. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Microsoft Docker Docker Desktop
NVD
CVSS 3.1
7.8
EPSS
0.3%
CVE-2023-0627 HIGH This Week

Docker Desktop 4.11.x allows --no-windows-containers flag bypass via IPC response spoofing which may lead to Local Privilege Escalation (LPE).11.X. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Microsoft Docker Docker Desktop
NVD
CVSS 3.1
7.8
EPSS
0.2%
CVE-2023-0626 CRITICAL Act Now

Docker Desktop before 4.12.0 is vulnerable to RCE via query parameters in message-box route.12.0. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

RCE Code Injection Docker Docker Desktop
NVD
CVSS 3.1
9.8
EPSS
0.7%
CVE-2023-0625 CRITICAL Act Now

Docker Desktop before 4.12.0 is vulnerable to RCE via a crafted extension description or changelog.12.0. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Docker Docker Desktop
NVD
CVSS 3.1
9.8
EPSS
0.7%
CVE-2023-41329 LIB MEDIUM PATCH This Month

WireMock is a tool for mocking HTTP services. Rated medium severity (CVSS 6.6), this vulnerability is remotely exploitable. No vendor patch available.

Python Authentication Bypass Docker Python Wiremock Studio +2
NVD GitHub
CVSS 3.1
6.6
EPSS
0.6%
CVE-2023-41327 Maven MEDIUM PATCH This Month

WireMock is a tool for mocking HTTP services. Rated medium severity (CVSS 5.4), this vulnerability is no authentication required, low attack complexity. This Server-Side Request Forgery (SSRF) vulnerability could allow attackers to make the server perform requests to unintended internal or external resources.

SSRF Docker Studio Wiremock
NVD GitHub
CVSS 3.1
5.4
EPSS
0.5%
CVE-2023-41044 Maven LOW POC PATCH Monitor

Graylog is a free and open log management platform. Rated low severity (CVSS 3.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

Path Traversal Docker Graylog
NVD GitHub
CVSS 3.1
3.8
EPSS
0.6%
CVE-2023-32079 Go HIGH PATCH This Week

Netmaker makes networks with WireGuard. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity.

Docker Privilege Escalation Netmaker
NVD GitHub VulDB
CVSS 3.1
8.8
EPSS
0.6%
CVE-2023-32078 Go HIGH PATCH This Week

Netmaker makes networks with WireGuard. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Docker Authentication Bypass Netmaker
NVD GitHub VulDB
CVSS 3.1
7.5
EPSS
0.1%
CVE-2023-32077 Go HIGH POC PATCH THREAT GHSA Act Now

Netmaker makes networks with WireGuard. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 86.6%.

Docker Information Disclosure Netmaker
NVD GitHub VulDB
CVSS 3.1
7.5
EPSS
86.6%
Threat
5.6
CVE-2023-40350 Maven MEDIUM This Month

Jenkins Docker Swarm Plugin 1.11 and earlier does not escape values returned from Docker before inserting them into the Docker Swarm Dashboard view, resulting in a stored cross-site scripting (XSS). Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Jenkins XSS Docker Docker Swarm
NVD
CVSS 3.1
5.4
EPSS
0.5%
CVE-2023-39523 PyPI HIGH POC PATCH This Week

ScanCode.io is a server to script and automate software composition analysis with ScanPipe pipelines. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

Command Injection Docker Scancode Io
NVD GitHub
CVSS 3.1
8.8
EPSS
2.4%
CVE-2023-37274 HIGH PATCH This Week

Auto-GPT is an experimental open-source application showcasing the capabilities of the GPT-4 language model. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. This Code Injection vulnerability could allow attackers to inject and execute arbitrary code within the application.

Docker Path Traversal RCE Python Code Injection +1
NVD GitHub
CVSS 3.1
7.8
EPSS
0.3%
CVE-2023-37273 HIGH PATCH This Week

Auto-GPT is an experimental open-source application showcasing the capabilities of the GPT-4 language model. Rated high severity (CVSS 8.8), this vulnerability is low attack complexity. This Code Injection vulnerability could allow attackers to inject and execute arbitrary code within the application.

RCE Python Code Injection Docker Autogpt Classic
NVD GitHub
CVSS 3.1
8.8
EPSS
0.3%
CVE-2023-36816 MEDIUM POC This Month

2FA is a Web app to manage Two-Factor Authentication (2FA) accounts and generate their security codes. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS Docker 2fauth
NVD GitHub
CVSS 3.1
6.1
EPSS
0.5%
CVE-2023-34844 CRITICAL POC Act Now

Play With Docker < 0.0.2 has an insecure CAP_SYS_ADMIN privileged mode causing the docker container to escape. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Docker Play With Docker
NVD
CVSS 3.1
9.8
EPSS
0.9%
CVE-2023-33979 MEDIUM PATCH This Month

gpt_academic provides a graphical interface for ChatGPT/GLM. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. This Exposure of Sensitive Information vulnerability could allow attackers to access sensitive data that should not be disclosed.

Information Disclosure Docker Gpt Academic
NVD GitHub
CVSS 3.1
6.5
EPSS
0.7%
CVE-2023-32696 HIGH PATCH This Week

CKAN is an open-source data management system for powering data hubs and data portals. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. This Improper Privilege Management vulnerability could allow attackers to escalate privileges to gain unauthorized elevated access.

Privilege Escalation RCE Docker Ckan
NVD GitHub
CVSS 3.1
8.8
EPSS
0.8%
CVE-2023-1174 CRITICAL Act Now

This vulnerability exposes a network port in minikube running on macOS with Docker driver that could enable unexpected remote access to the minikube container. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Apple Docker Minikube
NVD
CVSS 3.1
9.8
EPSS
0.8%
CVE-2023-28960 HIGH This Week

An Incorrect Permission Assignment for Critical Resource vulnerability in Juniper Networks Junos OS Evolved allows a local, authenticated low-privileged attacker to copy potentially malicious files. Rated high severity (CVSS 8.2), this vulnerability is low attack complexity. No vendor patch available.

Juniper Information Disclosure Docker Junos Os Evolved
NVD
CVSS 3.1
8.2
EPSS
0.2%
CVE-2023-30516 Maven MEDIUM This Month

Jenkins Image Tag Parameter Plugin 2.0 improperly introduces an option to opt out of SSL/TLS certificate validation when connecting to Docker registries, resulting in job configurations using Image. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Jenkins Information Disclosure Docker Image Tag Parameter
NVD
CVSS 3.1
6.5
EPSS
0.5%
CVE-2023-1802 HIGH POC This Week

In Docker Desktop 4.17.x the Artifactory Integration falls back to sending registry credentials over plain HTTP if the HTTPS health check has failed. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Docker Desktop
NVD GitHub
CVSS 3.1
7.5
EPSS
0.5%
CVE-2023-28842 Go MEDIUM PATCH This Month

Moby) is an open source container framework developed by Docker Inc. Rated medium severity (CVSS 6.8), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

RCE Linux Docker Moby
NVD GitHub
CVSS 3.1
6.8
EPSS
1.4%
CVE-2023-28841 Go MEDIUM POC PATCH This Month

Moby is an open source container framework developed by Docker Inc. Rated medium severity (CVSS 6.8), this vulnerability is remotely exploitable, no authentication required. Public exploit code available.

Information Disclosure Linux Docker Moby
NVD GitHub
CVSS 3.1
6.8
EPSS
0.7%
CVE-2023-28840 Go HIGH POC PATCH This Week

Moby is an open source container framework developed by Docker Inc. Rated high severity (CVSS 8.7), this vulnerability is remotely exploitable, no authentication required. Public exploit code available.

Denial Of Service Linux Docker Moby
NVD GitHub
CVSS 3.1
8.7
EPSS
2.7%
CVE-2023-25809 Go MEDIUM POC PATCH This Month

runc is a CLI tool for spawning and running containers according to the OCI specification. Rated medium severity (CVSS 6.3), this vulnerability is low attack complexity. Public exploit code available.

Information Disclosure Docker Runc
NVD GitHub
CVSS 3.1
6.3
EPSS
0.3%
CVE-2023-28444 npm HIGH PATCH This Week

angular-server-side-configuration helps configure an angular application at runtime on the server or in a docker container via environment variables. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Exposure of Sensitive Information vulnerability could allow attackers to access sensitive data that should not be disclosed.

Information Disclosure Docker Angular Server Side Configuration
NVD GitHub
CVSS 3.1
7.5
EPSS
0.8%
CVE-2023-28442 MEDIUM PATCH This Month

GeoNode is an open source platform that facilitates the creation, sharing, and collaborative use of geospatial data. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Exposure of Sensitive Information vulnerability could allow attackers to access sensitive data that should not be disclosed.

Information Disclosure Docker Geonode
NVD GitHub
CVSS 3.1
5.3
EPSS
0.6%
CVE-2023-28109 Go MEDIUM PATCH This Month

Play With Docker is a browser-based Docker playground. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Authentication Bypass Docker Play With Docker
NVD GitHub
CVSS 3.1
6.5
EPSS
0.7%
CVE-2023-0629 HIGH This Week

Docker Desktop before 4.17.0 allows an unprivileged user to bypass Enhanced Container Isolation (ECI) restrictions by setting the Docker host to docker.raw.sock, or. Rated high severity (CVSS 7.1), this vulnerability is low attack complexity. No vendor patch available.

Authentication Bypass Microsoft Docker Docker Desktop
NVD
CVSS 3.1
7.1
EPSS
0.2%
CVE-2023-0628 HIGH This Week

Docker Desktop before 4.17.0 allows an attacker to execute an arbitrary command inside a Dev Environments container during initialization by tricking a user to open a crafted malicious. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Command Injection Docker Docker Desktop
NVD
CVSS 3.1
7.8
EPSS
0.3%
EPSS 1% CVSS 8.8
HIGH This Week

Shields.io is a service for concise, consistent, and legible badges in SVG and raster format. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Docker
NVD GitHub
EPSS 1% CVSS 8.8
HIGH This Week

RSSHub is an RSS network. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

RCE Docker
NVD GitHub
EPSS 1% CVSS 9.1
CRITICAL Act Now

A flaw was found in openshift/builder. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Command Injection Privilege Escalation Path Traversal +1
NVD GitHub
EPSS 1% CVSS 8.9
HIGH This Week

A remote code execution (RCE) vulnerability via crafted extension publisher-url/additional-urls could be abused by a malicious extension in Docker Desktop before 4.34.2. Rated high severity (CVSS 8.9), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

RCE XSS Docker +1
NVD
EPSS 1% CVSS 9.0
CRITICAL Act Now

A remote code execution (RCE) vulnerability via crafted extension description/changelog could be abused by a malicious extension in Docker Desktop before 4.34.2. Rated critical severity (CVSS 9.0), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

RCE XSS Docker +1
NVD
EPSS 1% CVSS 7.2
HIGH This Week

Multiple vulnerabilities in Cisco Routed PON Controller Software, which runs as a docker container on hardware that is supported by Cisco IOS XR Software, could allow an authenticated, remote. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Apple Cisco Command Injection +2
NVD
EPSS 0% CVSS 5.4
MEDIUM PATCH This Month

Overleaf is a web-based collaborative LaTeX editor. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity.

Authentication Bypass Docker Overleaf
NVD GitHub
EPSS 0% CVSS 6.5
MEDIUM This Month

Homepage is a highly customizable homepage with Docker and service API integrations. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Docker Homepage
NVD GitHub
EPSS 0% CVSS 4.8
MEDIUM PATCH This Month

mailcow: dockerized is an open source groupware/email suite based on docker. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. This Cross-Site Scripting (XSS) vulnerability could allow attackers to inject malicious scripts into web pages viewed by other users.

XSS Docker Mailcow
NVD GitHub
EPSS 0% CVSS 6.1
MEDIUM PATCH This Month

mailcow: dockerized is an open source groupware/email suite based on docker. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Cross-Site Scripting (XSS) vulnerability could allow attackers to inject malicious scripts into web pages viewed by other users.

XSS Docker Mailcow
NVD GitHub
EPSS 1% CVSS 7.2
HIGH PATCH This Week

mailcow: dockerized is an open source groupware/email suite based on docker. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity.

Authentication Bypass Docker Mailcow
NVD GitHub
EPSS 0% CVSS 5.4
MEDIUM This Month

Canarytokens help track activity and actions on a network. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

SSRF Docker
NVD GitHub
EPSS 0% CVSS 3.5
LOW Monitor

Canarytokens help track activity and actions on a network. Rated low severity (CVSS 3.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Docker
NVD GitHub
EPSS 1% CVSS 7.3
HIGH This Week

In Docker Desktop before v4.29.0, an attacker who has gained access to the Docker Desktop VM through a container breakout can further escape to the host by passing extensions and dashboard related. Rated high severity (CVSS 7.3), this vulnerability is low attack complexity. No vendor patch available.

Apple Information Disclosure Docker +2
NVD
EPSS 0% CVSS 5.5
MEDIUM This Month

In Docker Desktop on Windows before v4.31.0 allows a user in the docker-users group to cause a Windows Denial-of-Service through the exec-path Docker daemon config option in Windows containers mode. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Docker Denial Of Service Microsoft +1
NVD
EPSS 1% CVSS 8.5
HIGH This Week

Airbyte is a data integration platform for ELT pipelines. Rated high severity (CVSS 8.5), this vulnerability is remotely exploitable. No vendor patch available.

RCE Ssti Docker
NVD GitHub
EPSS 0% CVSS 5.5
MEDIUM This Month

IBM Security Access Manager Docker 10.0.0.0 through 10.0.7.1 could allow a local user to obtain sensitive information from the container due to incorrect default permissions. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Docker IBM +1
NVD
EPSS 0% CVSS 6.2
MEDIUM This Month

IBM Security Access Manager Docker 10.0.0.0 through 10.0.7.1 could allow a local user to possibly elevate their privileges due to sensitive configuration information being exposed. Rated medium severity (CVSS 6.2), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

IBM Information Disclosure Docker +1
NVD
EPSS 0% CVSS 8.8
HIGH POC This Week

A vulnerability in zenml-io/zenml version 0.56.3 allows attackers to reuse old session credentials or session IDs due to insufficient session expiration. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Docker Zenml
NVD
EPSS 0% CVSS 7.8
HIGH This Week

IBM Security Verify Access Docker 10.0.0 through 10.0.6 could allow a local user to escalate their privileges due to execution of unnecessary privileges. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Docker IBM +1
NVD
EPSS 0% CVSS 7.8
HIGH This Week

IBM Security Verify Access Docker 10.0.0 through 10.0.6 could allow a local user to escalate their privileges due to improper certificate validation. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

IBM Privilege Escalation Docker +1
NVD
EPSS 94% CVSS 10.0
CRITICAL POC THREAT Act Now

Cacti provides an operational monitoring and fault management framework. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

PHP Command Injection Docker
NVD GitHub
EPSS 0% CVSS 6.1
MEDIUM PATCH This Month

Pterodactyl is a free, open-source game server management panel built with PHP, React, and Go. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Cross-Site Scripting (XSS) vulnerability could allow attackers to inject malicious scripts into web pages viewed by other users.

XSS Docker Panel
NVD GitHub
EPSS 1% CVSS 5.3
MEDIUM This Month

Brocade SANnav before v2.3.0a lacks protection mechanisms on port 2377/TCP and 7946/TCP, which could allow an unauthenticated attacker to sniff the SANnav Docker information. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Docker Brocade Sannav
NVD
EPSS 0% CVSS 6.5
MEDIUM POC PATCH This Month

Mealie is a self hosted recipe manager and meal planner. Rated medium severity (CVSS 6.5), this vulnerability is low attack complexity. Public exploit code available.

Docker Denial Of Service Mealie
NVD GitHub
EPSS 0% CVSS 6.0
MEDIUM This Month

In Brocade SANnav before Brocade SANnav v2.31 and v2.3.0a, it was observed that Docker instances inside the appliance have insecure mount points, allowing reading and writing access to sensitive. Rated medium severity (CVSS 6.0), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Docker Brocade Sannav
NVD
EPSS 1% CVSS 6.5
MEDIUM This Month

Brocade SANnav versions before v2.3.0a do not correctly set permissions on files, including docker files. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Docker Brocade Sannav
NVD
EPSS 0% CVSS 3.8
LOW Monitor

Brocade SANnav OVA before v2.3.1, and v2.3.0a, contain hardcoded TLS keys used by Docker. Rated low severity (CVSS 3.8), this vulnerability is low attack complexity. No vendor patch available.

Authentication Bypass Docker Brocade Sannav
NVD
EPSS 1% CVSS 8.8
HIGH This Week

vertaai/modeldb is vulnerable to a path traversal attack due to improper sanitization of user-supplied file paths in its file upload functionality. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Docker Path Traversal RCE +2
NVD
EPSS 8% CVSS 6.1
MEDIUM POC This Month

mailcow: dockerized is an open source groupware/email suite based on docker. Rated medium severity (CVSS 6.1). Public exploit code available and no vendor patch available.

XSS Docker Mailcow
NVD GitHub
EPSS 27% CVSS 6.2
MEDIUM POC THREAT This Month

mailcow: dockerized is an open source groupware/email suite based on docker. Rated medium severity (CVSS 6.2), this vulnerability is remotely exploitable. Public exploit code available and no vendor patch available.

RCE Path Traversal Docker +1
NVD GitHub
EPSS 1% CVSS 5.3
MEDIUM PATCH This Month

Improper Preservation of Permissions vulnerability in Apache Airflow.8.2 through 2.8.3. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable.

Apache Information Disclosure Docker +1
NVD GitHub
EPSS 0% CVSS 5.3
MEDIUM PATCH This Month

vantage6-UI is the official user interface for the vantage6 server. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Exposure of Resource to Wrong Sphere vulnerability could allow attackers to access resources from an unintended security context.

Docker Information Disclosure Nginx +1
NVD GitHub
EPSS 1% CVSS 6.5
MEDIUM PATCH This Month

Vela is a Pipeline Automation (CI/CD) framework built on Linux container technology written in Golang. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. This Exposure of Sensitive Information vulnerability could allow attackers to access sensitive data that should not be disclosed.

Information Disclosure Docker Worker
NVD GitHub
EPSS 1% CVSS 8.8
HIGH This Week

A missing permission check in an HTTP endpoint in Jenkins docker-build-step Plugin 2.11 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified TCP or Unix. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Authentication Bypass Docker Jenkins +1
NVD
EPSS 0% CVSS 6.1
MEDIUM This Month

A cross-site request forgery (CSRF) vulnerability in Jenkins docker-build-step Plugin 2.11 and earlier allows attackers to connect to an attacker-specified TCP or Unix socket URL, and to reconfigure. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

CSRF Docker Jenkins +1
NVD
EPSS 2% CVSS 9.1
CRITICAL Act Now

A command injection vulnerability was identified in GitHub Enterprise Server that allowed an attacker with an editor role in the Management Console to gain admin SSH access to the appliance via the. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Command Injection Docker Enterprise Server
NVD GitHub
EPSS 1% CVSS 7.5
HIGH POC This Week

The HTTP PUT and DELETE methods are enabled in the Plone official Docker version 5.2.13 (5221), allowing unauthenticated attackers to execute dangerous actions such as uploading files to the server. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Docker Plone
NVD GitHub
EPSS 2% CVSS 9.8
CRITICAL POC Act Now

An issue in Plone Docker Official Image 5.2.13 (5221) open-source software that could allow for remote code execution due to a package listed in ++plone++static/components not existing in the public. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Node.js RCE Docker +1
NVD GitHub VulDB
EPSS 1% CVSS 7.3
HIGH PATCH This Week

mailcow is a dockerized email package, with multiple containers linked in one bridged network. Rated high severity (CVSS 7.3), this vulnerability is low attack complexity.

Information Disclosure Docker Mailcow
NVD GitHub
EPSS 1% CVSS 7.5
HIGH POC PATCH This Week

Crafatar serves Minecraft avatars based on the skin for use in external applications. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Path Traversal Docker Crafatar
NVD GitHub
EPSS 0% CVSS 5.3
MEDIUM PATCH This Month

vantage6-UI is the User Interface for vantage6. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Exposure of Sensitive Information vulnerability could allow attackers to access sensitive data that should not be disclosed.

Docker Information Disclosure Nginx +1
NVD GitHub
EPSS 0% CVSS 9.8
CRITICAL PATCH Act Now

The vantage6 technology enables to manage and deploy privacy enhancing technologies like Federated Learning (FL) and Multi-Party Computation (MPC). Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Authentication Bypass Docker Vantage6
NVD GitHub
EPSS 1% CVSS 6.1
MEDIUM POC This Month

An issue in Plone Docker Official Image 5.2.13 (5221) open-source software allows for remote code execution via improper validation of input by the HOST headers. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

RCE Docker Plone Docker Official Image
NVD GitHub VulDB
EPSS 0% CVSS 6.2
MEDIUM PATCH This Month

IBM Security Access Manager Appliance (IBM Security Verify Access Appliance 10.0.0.0 through 10.0.6.1 and IBM Security Verify Access Docker 10.0.6.1) could allow a local user to possibly elevate. Rated medium severity (CVSS 6.2), this vulnerability is no authentication required, low attack complexity.

IBM Information Disclosure Docker +2
NVD
EPSS 0% CVSS 8.4
HIGH PATCH This Week

IBM Security Access Manager Container (IBM Security Verify Access Appliance 10.0.0.0 through 10.0.6.1 and IBM Security Verify Access Docker 10.0.6.1) could allow a local user to obtain root access. Rated high severity (CVSS 8.4), this vulnerability is no authentication required, low attack complexity.

IBM Information Disclosure Docker +2
NVD
EPSS 0% CVSS 5.1
MEDIUM PATCH This Month

IBM Security Access Manager Container (IBM Security Verify Access Appliance 10.0.0.0 through 10.0.6.1 and IBM Security Verify Access Docker 10.0.6.1) temporarily stores sensitive information in files. Rated medium severity (CVSS 5.1), this vulnerability is no authentication required.

IBM Information Disclosure Docker +2
NVD
EPSS 1% CVSS 4.3
MEDIUM PATCH This Month

dockerspawner is a tool to spawn JupyterHub single user servers in Docker containers. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity.

Information Disclosure Docker Dockerspawner
NVD GitHub
EPSS 1% CVSS 7.5
HIGH POC PATCH This Week

Traefik is an open source HTTP reverse proxy and load balancer. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service Docker Traefik
NVD GitHub
EPSS 1% CVSS 7.5
HIGH PATCH This Week

Forgejo before 1.20.5-1 allows 2FA bypass when docker login uses Basic Authentication. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Incorrect Authorization vulnerability could allow attackers to bypass authorization checks to access restricted resources.

Authentication Bypass Docker Forgejo
NVD
EPSS 0% CVSS 6.1
MEDIUM This Month

Mailcow: dockerized is an open source groupware/email suite based on docker. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Docker Mailcow
NVD GitHub
EPSS 43% 4.4 CVSS 8.1
HIGH POC PATCH THREAT Act Now

The News & Blog Designer Pack - WordPress Blog Plugin - (Blog Post Grid, Blog Post Slider, Blog Post Carousel, Blog Post Ticker, Blog Post Masonry) plugin for WordPress is vulnerable to Remote Code. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required. Public exploit code available and EPSS exploitation probability 43.2%.

PHP LFI RCE +3
NVD VulDB
EPSS 78% CVSS 7.5
HIGH POC KEV THREAT This Week

An issue was discovered in ownCloud owncloud/graphapi 0.2.x before 0.2.1 and 0.3.x before 0.3.1. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure PHP Docker +1
NVD GitHub
EPSS 1% CVSS 6.5
MEDIUM POC This Month

Docker Machine through 0.16.2 allows an attacker, who has control of a worker node, to provide crafted version data, which might potentially trick an administrator into performing an unsafe action. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service Docker Machine
NVD GitHub
EPSS 0% CVSS 6.3
MEDIUM PATCH This Month

Artifact Hub is a web-based application that enables finding, installing, and publishing packages and configurations for CNCF projects. Rated medium severity (CVSS 6.3), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Docker Hub
NVD GitHub
EPSS 0% CVSS 7.8
HIGH This Week

Dell SmartFabric Storage Software v1.4 (and earlier) contain(s) an OS Command Injection Vulnerability in the CLI. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Command Injection Dell Docker +1
NVD
EPSS 1% CVSS 8.8
HIGH This Week

A vulnerability in the on-device application development workflow feature for the Cisco IOx application hosting infrastructure in Cisco IOS XE Software could allow an authenticated, remote attacker. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Docker Path Traversal Apple +3
NVD
EPSS 1% CVSS 6.5
MEDIUM This Month

Docker Desktop before 4.23.0 allows Access Token theft via a crafted extension icon URL.23.0. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Docker Docker Desktop
NVD
EPSS 0% CVSS 8.8
HIGH This Week

Docker Desktop before 4.23.0 allows an unprivileged user to bypass Enhanced Container Isolation (ECI) restrictions via the debug shell which remains accessible for a short time window after launching. Rated high severity (CVSS 8.8), this vulnerability is low attack complexity. No vendor patch available.

Authentication Bypass Docker Docker Desktop
NVD
EPSS 0% CVSS 7.8
HIGH This Week

In Docker Desktop on Windows before 4.12.0 an argument injection to installer may result in local privilege escalation (LPE).12.0. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Microsoft Docker +1
NVD
EPSS 0% CVSS 7.8
HIGH This Week

Docker Desktop 4.11.x allows --no-windows-containers flag bypass via IPC response spoofing which may lead to Local Privilege Escalation (LPE).11.X. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Microsoft Docker +1
NVD
EPSS 1% CVSS 9.8
CRITICAL Act Now

Docker Desktop before 4.12.0 is vulnerable to RCE via query parameters in message-box route.12.0. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

RCE Code Injection Docker +1
NVD
EPSS 1% CVSS 9.8
CRITICAL Act Now

Docker Desktop before 4.12.0 is vulnerable to RCE via a crafted extension description or changelog.12.0. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Docker Docker Desktop
NVD
EPSS 1% CVSS 6.6
MEDIUM PATCH This Month

WireMock is a tool for mocking HTTP services. Rated medium severity (CVSS 6.6), this vulnerability is remotely exploitable. No vendor patch available.

Python Authentication Bypass Docker +4
NVD GitHub
EPSS 0% CVSS 5.4
MEDIUM PATCH This Month

WireMock is a tool for mocking HTTP services. Rated medium severity (CVSS 5.4), this vulnerability is no authentication required, low attack complexity. This Server-Side Request Forgery (SSRF) vulnerability could allow attackers to make the server perform requests to unintended internal or external resources.

SSRF Docker Studio +1
NVD GitHub
EPSS 1% CVSS 3.8
LOW POC PATCH Monitor

Graylog is a free and open log management platform. Rated low severity (CVSS 3.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

Path Traversal Docker Graylog
NVD GitHub
EPSS 1% CVSS 8.8
HIGH PATCH This Week

Netmaker makes networks with WireGuard. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity.

Docker Privilege Escalation Netmaker
NVD GitHub VulDB
EPSS 0% CVSS 7.5
HIGH PATCH This Week

Netmaker makes networks with WireGuard. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Docker Authentication Bypass Netmaker
NVD GitHub VulDB
EPSS 87% 5.6 CVSS 7.5
HIGH POC PATCH THREAT Act Now

Netmaker makes networks with WireGuard. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 86.6%.

Docker Information Disclosure Netmaker
NVD GitHub VulDB
EPSS 1% CVSS 5.4
MEDIUM This Month

Jenkins Docker Swarm Plugin 1.11 and earlier does not escape values returned from Docker before inserting them into the Docker Swarm Dashboard view, resulting in a stored cross-site scripting (XSS). Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Jenkins XSS Docker +1
NVD
EPSS 2% CVSS 8.8
HIGH POC PATCH This Week

ScanCode.io is a server to script and automate software composition analysis with ScanPipe pipelines. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

Command Injection Docker Scancode Io
NVD GitHub
EPSS 0% CVSS 7.8
HIGH PATCH This Week

Auto-GPT is an experimental open-source application showcasing the capabilities of the GPT-4 language model. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. This Code Injection vulnerability could allow attackers to inject and execute arbitrary code within the application.

Docker Path Traversal RCE +3
NVD GitHub
EPSS 0% CVSS 8.8
HIGH PATCH This Week

Auto-GPT is an experimental open-source application showcasing the capabilities of the GPT-4 language model. Rated high severity (CVSS 8.8), this vulnerability is low attack complexity. This Code Injection vulnerability could allow attackers to inject and execute arbitrary code within the application.

RCE Python Code Injection +2
NVD GitHub
EPSS 0% CVSS 6.1
MEDIUM POC This Month

2FA is a Web app to manage Two-Factor Authentication (2FA) accounts and generate their security codes. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS Docker 2fauth
NVD GitHub
EPSS 1% CVSS 9.8
CRITICAL POC Act Now

Play With Docker < 0.0.2 has an insecure CAP_SYS_ADMIN privileged mode causing the docker container to escape. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Docker Play With Docker
NVD
EPSS 1% CVSS 6.5
MEDIUM PATCH This Month

gpt_academic provides a graphical interface for ChatGPT/GLM. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. This Exposure of Sensitive Information vulnerability could allow attackers to access sensitive data that should not be disclosed.

Information Disclosure Docker Gpt Academic
NVD GitHub
EPSS 1% CVSS 8.8
HIGH PATCH This Week

CKAN is an open-source data management system for powering data hubs and data portals. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. This Improper Privilege Management vulnerability could allow attackers to escalate privileges to gain unauthorized elevated access.

Privilege Escalation RCE Docker +1
NVD GitHub
EPSS 1% CVSS 9.8
CRITICAL Act Now

This vulnerability exposes a network port in minikube running on macOS with Docker driver that could enable unexpected remote access to the minikube container. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Apple Docker +1
NVD
EPSS 0% CVSS 8.2
HIGH This Week

An Incorrect Permission Assignment for Critical Resource vulnerability in Juniper Networks Junos OS Evolved allows a local, authenticated low-privileged attacker to copy potentially malicious files. Rated high severity (CVSS 8.2), this vulnerability is low attack complexity. No vendor patch available.

Juniper Information Disclosure Docker +1
NVD
EPSS 0% CVSS 6.5
MEDIUM This Month

Jenkins Image Tag Parameter Plugin 2.0 improperly introduces an option to opt out of SSL/TLS certificate validation when connecting to Docker registries, resulting in job configurations using Image. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Jenkins Information Disclosure Docker +1
NVD
EPSS 1% CVSS 7.5
HIGH POC This Week

In Docker Desktop 4.17.x the Artifactory Integration falls back to sending registry credentials over plain HTTP if the HTTPS health check has failed. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Docker Desktop
NVD GitHub
EPSS 1% CVSS 6.8
MEDIUM PATCH This Month

Moby) is an open source container framework developed by Docker Inc. Rated medium severity (CVSS 6.8), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

RCE Linux Docker +1
NVD GitHub
EPSS 1% CVSS 6.8
MEDIUM POC PATCH This Month

Moby is an open source container framework developed by Docker Inc. Rated medium severity (CVSS 6.8), this vulnerability is remotely exploitable, no authentication required. Public exploit code available.

Information Disclosure Linux Docker +1
NVD GitHub
EPSS 3% CVSS 8.7
HIGH POC PATCH This Week

Moby is an open source container framework developed by Docker Inc. Rated high severity (CVSS 8.7), this vulnerability is remotely exploitable, no authentication required. Public exploit code available.

Denial Of Service Linux Docker +1
NVD GitHub
EPSS 0% CVSS 6.3
MEDIUM POC PATCH This Month

runc is a CLI tool for spawning and running containers according to the OCI specification. Rated medium severity (CVSS 6.3), this vulnerability is low attack complexity. Public exploit code available.

Information Disclosure Docker Runc
NVD GitHub
EPSS 1% CVSS 7.5
HIGH PATCH This Week

angular-server-side-configuration helps configure an angular application at runtime on the server or in a docker container via environment variables. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Exposure of Sensitive Information vulnerability could allow attackers to access sensitive data that should not be disclosed.

Information Disclosure Docker Angular Server Side Configuration
NVD GitHub
EPSS 1% CVSS 5.3
MEDIUM PATCH This Month

GeoNode is an open source platform that facilitates the creation, sharing, and collaborative use of geospatial data. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Exposure of Sensitive Information vulnerability could allow attackers to access sensitive data that should not be disclosed.

Information Disclosure Docker Geonode
NVD GitHub
EPSS 1% CVSS 6.5
MEDIUM PATCH This Month

Play With Docker is a browser-based Docker playground. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Authentication Bypass Docker Play With Docker
NVD GitHub
EPSS 0% CVSS 7.1
HIGH This Week

Docker Desktop before 4.17.0 allows an unprivileged user to bypass Enhanced Container Isolation (ECI) restrictions by setting the Docker host to docker.raw.sock, or. Rated high severity (CVSS 7.1), this vulnerability is low attack complexity. No vendor patch available.

Authentication Bypass Microsoft Docker +1
NVD
EPSS 0% CVSS 7.8
HIGH This Week

Docker Desktop before 4.17.0 allows an attacker to execute an arbitrary command inside a Dev Environments container during initialization by tricking a user to open a crafted malicious. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Command Injection Docker Docker Desktop
NVD
Prev Page 7 of 10 Next

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy