Approved changes feed: RSS · Atom
cpe:2.3:a:docker:docker:*:*:*:*:enterprise:*:*:*
part: a version: * update: *
| Vendor | Docker (fb312c2d-be4d-5919-b619-61409dcafa2c) |
|---|---|
| Product | Docker (c8c9d969-271a-5fc1-a74d-e1a37f1d19cf) |
| Edition | * |
| Language | * |
| Software edition | enterprise |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2019-13509 |
vulnerable | 2026-06-03 14:39:42.639770 |
Details available
In Docker CE and EE before 18.09.8 (as well as Docker EE before 17.06.2-ee-23 and 18.x before 18.03.1-ee-10), Docker Engine in debug mode may sometimes add secrets to the debug log. This applies to a scenario where docker stack deploy is run to redeploy a stack that includes (non external) secrets. It potentially applies to other API users of the stack API if they resend the secret.
Published: 2019-07-18T15:34:59.000Z
Updated: 2024-08-04T23:57:39.278Z Reference links
|
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2019-13139 |
vulnerable | 2026-06-03 14:39:36.583551 |
Details available
In Docker before 18.09.4, an attacker who is capable of supplying or manipulating the build path for the "docker build" command would be able to gain command execution. An issue exists in the way "docker build" processes remote git URLs, and results in command injection into the underlying "git clone" command, leading to code execution in the context of the user executing the "docker build" command. This occurs because git ref can be misinterpreted as a flag.
Published: 2019-08-22T19:47:43.000Z
Updated: 2024-08-04T23:41:10.517Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.