CVE-2021-41092 – github.com/docker/cli

Package

Manager: go
Name: github.com/docker/cli
Vulnerable Version: >=0 <20.10.9

Severity

Level: Medium

CVSS v3.1: CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:C/C:H/I:N/A:N

CVSS v4.0: CVSS:4.0/AV:A/AC:H/AT:P/PR:H/UI:P/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N

EPSS: 0.00077 pctl0.23746

Details

Docker CLI leaks private registry credentials to registry-1.docker.io ## Impact A bug was found in the Docker CLI where running `docker login my-private-registry.example.com` with a misconfigured configuration file (typically `~/.docker/config.json`) listing a `credsStore` or `credHelpers` that could not be executed would result in any provided credentials being sent to `registry-1.docker.io` rather than the intended private registry. ## Patches This bug has been fixed in Docker CLI 20.10.9. Users should update to this version as soon as possible. ## Workarounds Ensure that any configured `credsStore` or `credHelpers` entries in the configuration file reference an installed credential helper that is executable and on the `PATH`. ## For more information If you have any questions or comments about this advisory: * [Open an issue](https://github.com/docker/cli/issues/new/choose) * Email us at security@docker.com if you think you’ve found a security bug

Metadata

Created: 2024-06-10T18:38:49Z
Modified: 2024-07-05T21:43:24Z
Source: https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2024/06/GHSA-99pg-grm5-qq3v/GHSA-99pg-grm5-qq3v.json
CWE IDs: ["CWE-200", "CWE-522"]
Alternative ID: GHSA-99pg-grm5-qq3v
Finding: F017
Auto approve: 1