An issue exists in Docker Engine prior to 19.03.11. An attacker in a container, with the CAP_NET_RAW capability, can craft IPv6 router advertisements, and consequently spoof external IPv6 hosts, obtain sensitive information, or cause a denial of service.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
docker engine |
||
fedoraproject fedora 31 |
||
fedoraproject fedora 32 |
||
debian debian linux 10.0 |
||
broadcom sannav - |