Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
668
VMScore

CVE-2021-27886

Published: 02/03/2021 Updated: 23/05/2022
CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10
CVSS v3 Base Score: 9.8 | Impact Score: 5.9 | Exploitability Score: 3.9
VMScore: 668
Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Subscribe to Docker Dashboard Project

Vulnerability Summary

rakibtg Docker Dashboard prior to 2021-02-28 allows command injection in backend/utilities/terminal.js via shell metacharacters in the command parameter of an API request. NOTE: this is NOT a Docker, Inc. product.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

docker dashboard project docker dashboard

Exploits

Exploit DB: Docker Dashboard Remote Command Execution
Docker Dashboard suffers from a remote command execution vulnerability The fix is added in commit 79cdc41 ...

References

https://github.com/rakibtg/docker-web-gui/commit/79cdc41809f2030fce21a1109898bd79e4190661https://github.com/rakibtg/docker-web-gui/issues/23https://www.docker.com/legal/trademark-guidelineshttp://packetstormsecurity.com/files/163416/Docker-Dashboard-Remote-Command-Execution.htmlhttps://nvd.nist.govhttps://packetstormsecurity.com/files/163416/Docker-Dashboard-Remote-Command-Execution.html
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injectionSSRFbuffer overflowCVE-2023-28952CVE-2023-41822CVE-2024-27956CVE-2023-7028CVE-2024-34447CVE-2024-34460
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook