Approved changes feed: RSS · Atom
cpe:2.3:a:docker:cs_engine:*:*:*:*:*:*:*:*
part: a version: * update: *
| Vendor | Docker (fb312c2d-be4d-5919-b619-61409dcafa2c) |
|---|---|
| Product | Cs Engine (fecba73c-784f-5528-ba98-8fff200336f7) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2014-8179 |
vulnerable | 2026-06-03 14:34:23.440273 |
Details available
Docker Engine before 1.8.3 and CS Docker Engine before 1.6.2-CS7 does not properly validate and extract the manifest object from its JSON representation during a pull, which allows attackers to inject new attributes in a JSON object and bypass pull-by-digest validation.
Published: 2019-12-04T15:10:35.000Z
Updated: 2024-08-06T13:10:51.252Z Reference links
|
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2014-8178 |
vulnerable | 2026-06-03 14:34:23.439171 |
Details available
Docker Engine before 1.8.3 and CS Docker Engine before 1.6.2-CS7 do not use a globally unique identifier to store image layers, which makes it easier for attackers to poison the image cache via a crafted image in pull or push commands.
Published: 2019-12-04T15:05:02.000Z
Updated: 2024-08-06T13:10:51.117Z Reference links
|
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.