Docker 1.3.0 up to and including 1.3.1 allows remote malicious users to modify the default run profile of image containers and possibly bypass the container by applying unspecified security options to an image.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
docker docker 1.3.0 |
||
docker docker 1.3.1 |
UPGRADE NOW to fix vuln found in all previous versions
A nasty vulnerability has been discovered in the Docker application containerization software for Linux that could allow an attacker to gain elevated privileges and execute code remotely on affected systems. The bug, which has been corrected in Docker 1.3.2, affects all previous versions of the software. "No remediation is available for older versions of Docker and users are advised to upgrade," the company said in a security advisory on Monday. The flaw, which has been assigned CVE-2014-6407, r...