Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
NA

CVE-2022-37708

Published: 31/01/2023 Updated: 07/11/2023

Vulnerability Summary

A flaw was found in Moby. This flaw allows an malicious user to bypass primary group restrictions due to a flaw in the supplementary group access setup. (CVE-2022-36109) Docker version 20.10.15, build fd82621 is vulnerable to Insecure Permissions. Unauthorized users outside the Docker container can access any files within the Docker container. (CVE-2022-37708)

Vulnerability Trend

Vendor Advisories

Debian CVElist Bug Report Logs: docker.io: CVE-2022-37708
Debian Bug report logs - #1034886 dockerio: CVE-2022-37708 Package: src:dockerio; Maintainer for src:dockerio is Debian Go Packaging Team <team+pkg-go@trackerdebianorg>; Reported by: Moritz Mühlenhoff <jmm@inutilorg> Date: Wed, 26 Apr 2023 17:39:02 UTC Severity: important Tags: security, upstream Reply o ...
Red Hat:
DescriptionThe MITRE CVE dictionary describes this issue as: Docker version 201015, build fd82621 is vulnerable to Insecure Permissions Unauthorized users outside the Docker container can access any files within the Docker container ...
Amazon Linux 2: ALAS2DOCKER-2023-024
A flaw was found in Moby This flaw allows an attacker to bypass primary group restrictions due to a flaw in the supplementary group access setup (CVE-2022-36109) Docker version 201015, build fd82621 is vulnerable to Insecure Permissions Unauthorized users outside the Docker container can access any files within the Docker container (CVE-2022- ...
Amazon Linux 2: ALASECS-2023-013
A flaw was found in Moby This flaw allows an attacker to bypass primary group restrictions due to a flaw in the supplementary group access setup (CVE-2022-36109) Docker version 201015, build fd82621 is vulnerable to Insecure Permissions Unauthorized users outside the Docker container can access any files within the Docker container (CVE-2022- ...
Amazon Linux 2: ALAS2DOCKER-2023-022
A flaw was found in Moby This flaw allows an attacker to bypass primary group restrictions due to a flaw in the supplementary group access setup (CVE-2022-36109) Docker version 201015, build fd82621 is vulnerable to Insecure Permissions Unauthorized users outside the Docker container can access any files within the Docker container (CVE-2022- ...
Amazon Linux 2: ALAS2NITRO-ENCLAVES-2023-022
A flaw was found in Moby This flaw allows an attacker to bypass primary group restrictions due to a flaw in the supplementary group access setup (CVE-2022-36109) Docker version 201015, build fd82621 is vulnerable to Insecure Permissions Unauthorized users outside the Docker container can access any files within the Docker container (CVE-2022- ...

Github Repositories

https://github.com/thekevinday/docker_lightman_exploit

Docker CVE-2022-37708

Docker Lightman Exploit Docker CVE-2022-37708 This exploit relies on how the UNIX filesystem has UID and GID on files that Docker shares between the Host running the Docker and the Client being run within the Docker as well as relies on the nature of how Process ID ownership works The Problem in a nutshell Docker directly maps the IDs from the shares within the Client to a

References

https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1034886https://nvd.nist.govhttps://github.com/thekevinday/docker_lightman_exploithttps://access.redhat.com/security/cve/cve-2022-37708https://alas.aws.amazon.com/AL2/ALASDOCKER-2023-024.html
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23316SQL injectiontype confusionCVE-2024-20697CVE-2024-4344localCVE-2024-30043CVE-2024-3821CVE-2024-5041
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook