A specifically crafted Docker image running under the root user can overwrite the init helper binary of the container runtime and/or the command executor in Apache Mesos versions pre-1.4.x, 1.4.0 to 1.4.2, 1.5.0 to 1.5.2, 1.6.0 to 1.6.1, and 1.7.0 to 1.7.1. A malicious actor can therefore gain root-level code execution on the host.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
apache mesos |
||
apache mesos 1.8.0 |
||
redhat fuse 7.5.0 |