Vulnerabilities > Apache > Mesos > 1.8.0

DATE CVE VULNERABILITY TITLE RISK
2019-03-25 CVE-2019-0204 A specifically crafted Docker image running under the root user can overwrite the init helper binary of the container runtime and/or the command executor in Apache Mesos versions pre-1.4.x, 1.4.0 to 1.4.2, 1.5.0 to 1.5.2, 1.6.0 to 1.6.1, and 1.7.0 to 1.7.1.
local
low complexity
apache redhat
7.8
7.8
2019-03-05 CVE-2018-11793 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apache Mesos
When parsing a JSON payload with deeply nested JSON structures, the parser in Apache Mesos versions pre-1.4.x, 1.4.0 to 1.4.2, 1.5.0 to 1.5.1, 1.6.0 to 1.6.1, and 1.7.0 might overflow the stack due to unbounded recursion.
network
low complexity
apache CWE-119
7.5
7.5