CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2014-3499

Docker 1.0.0 uses world-readable and world-writable permissions on the management socket, which allows local users to gain privileges via unspecified vectors.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 8.6%

CVSS Severity

CVSS v2 Score 7.2

References

http://rhn.redhat.com/errata/RHSA-2014-0820.html
https://bugzilla.redhat.com/show_bug.cgi?id=1111687
http://rhn.redhat.com/errata/RHSA-2014-0820.html
https://bugzilla.redhat.com/show_bug.cgi?id=1111687

Products affected by CVE-2014-3499

Docker » Docker » Version: 1.0.0

cpe:2.3:a:docker:docker:1.0.0
Fedoraproject » Fedora » Version: 19

cpe:2.3:o:fedoraproject:fedora:19
Fedoraproject » Fedora » Version: 20

cpe:2.3:o:fedoraproject:fedora:20

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2014-3499

Products

Pricing

Contact Us