Vulnerabilities (CVE)

Filtered by vendor Docker Subscribe
Filtered by product Engine
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2020-13401 4 Broadcom, Debian, Docker and 1 more 4 Sannav, Debian Linux, Engine and 1 more 2024-11-21 6.0 MEDIUM 6.0 MEDIUM
An issue was discovered in Docker Engine before 19.03.11. An attacker in a container, with the CAP_NET_RAW capability, can craft IPv6 router advertisements, and consequently spoof external IPv6 hosts, obtain sensitive information, or cause a denial of service.
CVE-2018-20699 2 Docker, Redhat 2 Engine, Enterprise Linux Server 2024-11-21 4.0 MEDIUM 4.9 MEDIUM
Docker Engine before 18.09 allows attackers to cause a denial of service (dockerd memory consumption) via a large integer in a --cpuset-mems or --cpuset-cpus value, related to daemon/daemon_unix.go, pkg/parsers/parsers.go, and pkg/sysinfo/sysinfo.go.