Vulnerabilities > Docker > Engine > Medium

DATE CVE VULNERABILITY TITLE RISK
2020-06-02 CVE-2020-13401 Improper Input Validation vulnerability in multiple products
An issue was discovered in Docker Engine before 19.03.11.
network
high complexity
docker fedoraproject debian broadcom CWE-20
6.0
6.0
2019-01-12 CVE-2018-20699 Resource Exhaustion vulnerability in multiple products
Docker Engine before 18.09 allows attackers to cause a denial of service (dockerd memory consumption) via a large integer in a --cpuset-mems or --cpuset-cpus value, related to daemon/daemon_unix.go, pkg/parsers/parsers.go, and pkg/sysinfo/sysinfo.go.
network
low complexity
docker redhat CWE-400
4.0
4.0