Max CVSS | 7.5 | Min CVSS | 6.4 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2014-9358 | 6.4 |
Docker before 1.3.3 does not properly validate image IDs, which allows remote attackers to conduct path traversal attacks and spoof repositories via a crafted image in a (1) "docker load" operation or (2) "registry communications."
|
09-10-2018 - 19:55 | 16-12-2014 - 18:59 | |
CVE-2014-6407 | 7.5 |
Docker before 1.3.2 allows remote attackers to write to arbitrary files and execute arbitrary code via a (1) symlink or (2) hard link attack in an image archive in a (a) pull or (b) load operation.
|
15-12-2014 - 19:36 | 12-12-2014 - 15:59 |