CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2016-6349

The machinectl command in oci-register-machine allows local users to list running containers and possibly obtain sensitive information by running that command.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 33.3%

CVSS Severity

CVSS v3 Score 3.3

CVSS v2 Score 2.1

References

http://www.openwall.com/lists/oss-security/2016/07/26/9
http://www.openwall.com/lists/oss-security/2016/10/13/7
http://www.securityfocus.com/bid/92143
https://bugzilla.redhat.com/show_bug.cgi?id=1360634
https://github.com/projectatomic/oci-register-machine/pull/22
http://www.openwall.com/lists/oss-security/2016/07/26/9
http://www.openwall.com/lists/oss-security/2016/10/13/7
http://www.securityfocus.com/bid/92143
https://bugzilla.redhat.com/show_bug.cgi?id=1360634
https://github.com/projectatomic/oci-register-machine/pull/22

Products affected by CVE-2016-6349

Projectatomic » Oci-Register-Machine » Version: N/A

cpe:2.3:a:projectatomic:oci-register-machine:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2016-6349

Products

Pricing

Contact Us