Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
docker vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2020-35197
The official memcached docker images prior to 1.5.11-alpine (Alpine specific) contain a blank password for a root user. System using the memcached docker container deployed by affected versions of the docker image may allow a remote malicious user to achieve root access with a bl...
Docker Memcached Docker Image
10
CVSSv2
CVE-2020-29580
The official storm Docker images prior to 1.2.1 contain a blank password for a root user. Systems using the Storm Docker container deployed by affected versions of the Docker image may allow an remote malicious user to achieve root access with a blank password.
Docker Storm Docker Image
10
CVSSv2
CVE-2020-29601
The official notary docker images before signer-0.6.1-1 contain a blank password for a root user. System using the notary docker container deployed by affected versions of the docker image may allow an remote malicious user to achieve root access with a blank password.
Docker Notary Docker Image
7.5
CVSSv2
CVE-2014-0048
An issue was found in Docker prior to 1.6.0. Some programs and scripts in Docker are downloaded via HTTP and then executed or used in unsafe ways.
Docker Docker
Apache Geode 1.12.0
10
CVSSv2
CVE-2021-34079
OS Command injection vulnerability in Mintzo Docker-Tester up to and including 1.2.1 allows malicious users to execute arbitrary commands via shell metacharacters in the 'ports' entry of a crafted docker-compose.yml file.
Docker-tester Project Docker-tester
10
CVSSv2
CVE-2020-29389
The official Crux Linux Docker images 3.0 up to and including 3.4 contain a blank password for a root user. System using the Crux Linux Docker container deployed by affected versions of the Docker image may allow an malicious user to achieve root access with a blank password.
Docker Crux Linux Docker Image
7.5
CVSSv2
CVE-2021-27886
rakibtg Docker Dashboard prior to 2021-02-28 allows command injection in backend/utilities/terminal.js via shell metacharacters in the command parameter of an API request. NOTE: this is NOT a Docker, Inc. product.
Docker Dashboard Project Docker Dashboard
10
CVSSv2
CVE-2020-29581
The official spiped docker images prior to 1.5-alpine contain a blank password for a root user. Systems using the spiped docker container deployed by affected versions of the docker image may allow an remote malicious user to achieve root access with a blank password.
Docker Spiped Alpine Docker Image
10
CVSSv2
CVE-2020-35185
The official ghost docker images prior to 2.16.1-alpine (Alpine specific) contain a blank password for a root user. System using the ghost docker container deployed by affected versions of the docker image may allow a remote malicious user to achieve root access with a blank pass...
Docker Ghost Alpine Docker Image
10
CVSSv2
CVE-2020-29575
The official elixir Docker images prior to 1.8.0-alpine (Alpine specific) contain a blank password for a root user. Systems using the elixir Linux Docker container deployed by affected versions of the Docker image may allow a remote malicious user to achieve root access with a bl...
Docker Elixir Alpine Docker Image
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
deserialization
CVE-2024-4040
cross-site scripting
CVE-2023-25790
CVE-2024-2961
XML external entity
CVE-2024-26926
CVE-2024-32806
CVE-2024-32711
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »