Security News > 2024 > July > Docker fixes critical 5-year old authentication bypass flaw

Docker fixes critical 5-year old authentication bypass flaw

2024-07-24 19:00

Docker has issued security updates to address a critical vulnerability impacting certain versions of Docker Engine that could allow an attacker to bypass authorization plugins (AuthZ) under certain circumstances. [...]

News URL

https://www.bleepingcomputer.com/news/security/docker-fixes-critical-5-year-old-authentication-bypass-flaw/

#authentication #bypass #critical #docker

Related news

ASUS warns of critical auth bypass flaw in routers using AiCloud (source)
Ivanti warns of critical Neurons for ITSM auth bypass flaw (source)
Unpatched critical bugs in Versa Concerto lead to auth bypass, RCE (source)
Critical Versa Concerto Flaws Let Attackers Escape Docker and Compromise Hosts (source)
Hewlett Packard Enterprise warns of critical StoreOnce auth bypass (source)
HPE Issues Security Patch for StoreOnce Bug Allowing Remote Authentication Bypass (source)
Critical Cisco ISE Auth Bypass Flaw Impacts Cloud Deployments on AWS, Azure, and OCI (source)

Related vendor

VENDOR	LAST 12M	#/PRODUCTS	LOW	MEDIUM	HIGH	CRITICAL	TOTAL VULNS
Docker		24	0	19	37	20	76

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.