Access Restriction Bypass in Docker
Moderate severity
GitHub Reviewed
Published
Feb 15, 2022
to the GitHub Advisory Database
•
Updated Jan 9, 2023
Package
Affected versions
>= 1.3.0, < 1.3.2
Patched versions
1.3.2
Description
Reviewed
May 20, 2021
Published to the GitHub Advisory Database
Feb 15, 2022
Last updated
Jan 9, 2023
Docker 1.3.0 through 1.3.1 allows remote attackers to modify the default run profile of image containers and possibly bypass the container by applying unspecified security options to an image.
References