Engine

Submit a proposal Propose CVE/GCVE/GHSA reference

Approved changes feed: RSS · Atom

cpe:2.3:a:docker:engine:*:*:*:*:*:*:*:*

part: a version: * update: *

VendorDocker (fb312c2d-be4d-5919-b619-61409dcafa2c)
ProductEngine (fd4cd3e3-88e7-5403-9d42-49eca65dd0da)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from purl2cpe mapping

PURL mappings

PURLSourceLast updated
pkg:docker/docker-dev purl2cpe 2026-06-01 10:13:10.729468
pkg:github/docker/engine purl2cpe 2026-06-01 10:13:10.729471
pkg:github/moby/moby purl2cpe 2026-06-01 10:13:10.729475
pkg:sourceforge/moby.mirror purl2cpe 2026-06-01 10:13:10.729478

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2020-13401 vulnerable 2026-06-03 14:41:36.619229 Details available
An issue was discovered in Docker Engine before 19.03.11. An attacker in a container, with the CAP_NET_RAW capability, can craft IPv6 router advertisements, and consequently spoof external IPv6 hosts, obtain sensitive information, or cause a denial of service.
Published: 2020-06-02T13:42:09.000Z
Updated: 2024-08-04T12:18:17.583Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2018-20699 vulnerable 2026-06-03 14:38:39.561481 Details available
Docker Engine before 18.09 allows attackers to cause a denial of service (dockerd memory consumption) via a large integer in a --cpuset-mems or --cpuset-cpus value, related to daemon/daemon_unix.go, pkg/parsers/parsers.go, and pkg/sysinfo/sysinfo.go.
Published: 2019-01-12T02:00:00.000Z
Updated: 2024-08-05T12:05:17.865Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.