| CVE-2026-42306 |
high |
— |
8.0 |
|
|
|
10d ago |
Docker: Race condition in docker cp allows bind mount redirection to host path |
| CVE-2026-41567 |
high |
— |
8.0 |
|
|
|
10d ago |
Docker: `PUT /containers/{id}/archive` executes container binary on the host |
| CVE-2026-34040 |
high |
— |
8.0 |
|
|
|
2mo ago |
Moby has AuthZ plugin bypass when provided oversized request bodies |
| CVE-2017-16539 |
medium |
5.9 |
5.9 |
|
|
|
9y ago |
Docker Moby /proc/scsi Path Exposure Allows Host Data Loss (SCSI MICDROP) |
| CVE-2026-41568 |
medium |
— |
5.5 |
|
|
|
10d ago |
Docker: Race condition in docker cp allows creation of arbitrary empty files on the host via symlink swap |
| CVE-2021-41089 |
medium |
— |
5.5 |
|
|
|
2y ago |
Unexpected chmod of host files via 'docker cp' in Moby Docker Engine in github.com/docker/docker |
| CVE-2021-41091 |
medium |
— |
5.5 |
|
|
|
2y ago |
Moby (Docker Engine) Insufficiently restricted permissions on data directory in github.com/docker/docker |
| CVE-2021-21285 |
medium |
— |
5.5 |
|
|
|
2y ago |
moby docker daemon crash during image pull of malicious image |
| CVE-2021-21284 |
medium |
— |
5.5 |
|
|
|
2y ago |
moby Access to remapped root allows privilege escalation to real root |