Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.3
CVE-2019-5736
- EPSS 53.41%
- Veröffentlicht 11.02.2019 19:29:00
- Zuletzt bearbeitet 21.11.2024 04:45:24
runc through 1.0-rc6, as used in Docker before 18.09.2 and other products, allows attackers to overwrite the host runc binary (and consequently obtain host root access) by leveraging the ability to execute a command as root within one of these types ...
7.8
CVE-2016-3697
- EPSS 0.09%
- Veröffentlicht 01.06.2016 20:59:06
- Zuletzt bearbeitet 12.04.2025 10:46:40
libcontainer/user/user.go in runC before 0.1.0, as used in Docker before 1.11.2, improperly treats a numeric UID as a potential username, which allows local users to gain privileges via a numeric username in the password file in a container.