Max CVSS | 7.2 | Min CVSS | 3.6 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2015-3629 | 7.2 |
Libcontainer 1.6.0, as used in Docker Engine, allows local users to escape containerization ("mount namespace breakout") and write to arbitrary file on the host system via a symlink attack in an image when respawning a container.
|
02-02-2024 - 02:07 | 18-05-2015 - 15:59 | |
CVE-2015-3630 | 7.2 |
Docker Engine before 1.6.1 uses weak permissions for (1) /proc/asound, (2) /proc/timer_stats, (3) /proc/latency_stats, and (4) /proc/fs, which allows local users to modify the host, obtain sensitive information, and perform protocol downgrade attacks
|
13-08-2018 - 21:47 | 18-05-2015 - 15:59 | |
CVE-2015-3627 | 7.2 |
Libcontainer and Docker Engine before 1.6.1 opens the file-descriptor passed to the pid-1 process before performing the chroot, which allows local users to gain privileges via a symlink attack in an image.
|
13-08-2018 - 21:47 | 18-05-2015 - 15:59 | |
CVE-2015-3631 | 3.6 |
Docker Engine before 1.6.1 allows local users to set arbitrary Linux Security Modules (LSM) and docker_t policies via an image that allows volumes to override files in /proc.
|
13-08-2018 - 21:47 | 18-05-2015 - 15:59 |