Vulnerability Details CVE-2014-9357
Docker 1.3.2 allows remote attackers to execute arbitrary code with root privileges via a crafted (1) image or (2) build in a Dockerfile in an LZMA (.xz) archive, related to the chroot for archive extraction.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.532
EPSS Ranking 97.9%
CVSS Severity
CVSS v2 Score 10.0
Products affected by CVE-2014-9357
-
cpe:2.3:a:docker:docker:1.3.2