logo

Database

Sensitive information sent insecurely In docker.io

Description

privilege escalation

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem
Package
Affected version
Patched versions

1-10 of 11

10

Aliases

1. CVE-2020-152572. NVD-2020-152573. OSV-DEBIAN-2020-152574. OSV-2020-152575. GHSA-36xw-fx78-c5r46. GCVE-2020-152577. SECURITY-TRACKER-CVE-2020-152578. security.gentoo.org9. GHSA-36xw-fx78-c5r410. research.nccgroup.com

References

1. https://github.com/nccgroup/abstractshimmer2. https://github.com/containerd/containerd/security/advisories/GHSA-36xw-fx78-c5r43. https://github.com/containerd/containerd/commit/4a4bb851f5da563ff6e68a83dc837c7699c469ad4. https://github.com/containerd/containerd/releases/tag/v1.4.35. https://lists.fedoraproject.org/archives/list/[email protected]/message/LNKXLOLZWO5FMAPX63ZL7JNKTNNT5NQD6. https://research.nccgroup.com/2020/12/10/abstract-shimmer-cve-2020-15257-host-networking-is-root-equivalent-again7. https://www.debian.org/security/2021/dsa-4865

Does your application use this vulnerable software?

During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.