Docker - Cs Engine CVE

Filtered by vendor Docker Subscribe

Filtered by product Cs Engine

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2014-8179	2 Docker, Opensuse	3 Cs Engine, Docker, Opensuse	2019-12-21	5.0 MEDIUM	7.5 HIGH
Docker Engine before 1.8.3 and CS Docker Engine before 1.6.2-CS7 does not properly validate and extract the manifest object from its JSON representation during a pull, which allows attackers to inject new attributes in a JSON object and bypass pull-by-digest validation.

Vulnerabilities (CVE)