Shodan
Vulnerabilities
Vulnerable Software
Docker:  Security Vulnerabilities
CVE-2021-20537
IBM Security Verify Access Docker 10.0.0 contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to external components, or encryption of internal data. IBM X-Force ID:198918
CVSS Score
6.5
EPSS Score
0.001
Published
2021-07-15
CVE-2021-29699
IBM Security Verify Access Docker 10.0.0 could allow a remote priviled user to upload arbitrary files with a dangerous file type that could be excuted by an user. IBM X-Force ID: 200600.
CVSS Score
6.6
EPSS Score
0.004
Published
2021-07-15
CVE-2021-29742
IBM Security Verify Access Docker 10.0.0 could allow a user to impersonate another user on the system. IBM X-Force ID: 201483.
CVSS Score
7.9
EPSS Score
0.002
Published
2021-07-15
CVE-2021-20496
IBM Security Verify Access Docker 10.0.0 could allow an authenticated user to bypass input due to improper input validation. IBM X-Force ID: 197966.
CVSS Score
2.7
EPSS Score
0.002
Published
2021-07-15
CVE-2021-20497
IBM Security Verify Access Docker 10.0.0 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 197969
CVSS Score
5.9
EPSS Score
0.001
Published
2021-07-15
CVE-2021-20498
IBM Security Verify Access Docker 10.0.0 reveals version information in HTTP requests that could be used in further attacks against the system. IBM X-Force ID: 197972.
CVSS Score
5.3
EPSS Score
0.002
Published
2021-07-15
CVE-2021-20499
IBM Security Verify Access Docker 10.0.0 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system. IBM X-Force ID: 197973
CVSS Score
2.7
EPSS Score
0.001
Published
2021-07-15
CVE-2021-20500
IBM Security Verify Access Docker 10.0.0 could reveal highly sensitive information to a local privileged user. IBM X-Force ID: 197980.
CVSS Score
4.4
EPSS Score
0.0
Published
2021-07-15
CVE-2021-20510
IBM Security Verify Access Docker 10.0.0 stores user credentials in plain clear text which can be read by a local user. IBM X-Force ID: 198299
CVSS Score
6.8
EPSS Score
0.001
Published
2021-07-15
CVE-2021-20511
IBM Security Verify Access Docker 10.0.0 could allow a remote attacker to traverse directories on the system. An attacker could send a specially-crafted URL request containing "dot dot" sequences (/../) to view arbitrary files on the system. IBM X-Force ID: 198300.
CVSS Score
5.2
EPSS Score
0.004
Published
2021-07-15


Products
Pricing
Contact Us

Shodan ® - All rights reserved