CVE-2022-37708

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2022-37708
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none.
CVSS

No CVSS.

References

No reference.

Configurations

No configuration.

History

07 Nov 2023, 03:49

Type Values Removed Values Added
Summary ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none. Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none.

02 May 2023, 20:15

Type Values Removed Values Added
CPE cpe:2.3:a:docker:docker:20.10.15:*:*:*:-:*:*:*
References
  • {'url': 'https://github.com/thekevinday/docker_lightman_exploit', 'name': 'https://github.com/thekevinday/docker_lightman_exploit', 'tags': ['Exploit', 'Third Party Advisory'], 'refsource': 'MISC'}
  • {'url': 'https://github.com/orgs/docker/repositories', 'name': 'https://github.com/orgs/docker/repositories', 'tags': ['Product'], 'refsource': 'MISC'}
  • {'url': 'https://www.docker.com/', 'name': 'https://www.docker.com/', 'tags': ['Product'], 'refsource': 'MISC'}
  • {'url': 'https://security.netapp.com/advisory/ntap-20230309-0008/', 'name': 'https://security.netapp.com/advisory/ntap-20230309-0008/', 'tags': [], 'refsource': 'CONFIRM'}
Summary Docker version 20.10.15, build fd82621 is vulnerable to Insecure Permissions. Unauthorized users outside the Docker container can access any files within the Docker container. ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none.
CWE CWE-732
CVSS v2 : unknown
v3 : 6.8 		v2 : unknown
v3 : unknown
Information

Published : 2023-01-31 22:15

Updated : 2024-04-16 17:58

NVD link : CVE-2022-37708

Mitre link : CVE-2022-37708

CVE.ORG link : CVE-2022-37708

JSON object : View

Products Affected

No product.

CWE

No CWE.