Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Hyper Subscribe
Filtered by product Runv
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2018-9862 1 Hyper 1 Runv 2019-10-02 7.2 HIGH 7.8 HIGH
util.c in runV 1.0.0 for Docker mishandles a numeric username, which allows attackers to obtain root access by leveraging the presence of an initial numeric value on an /etc/passwd line, and then issuing a "docker exec" command with that value in the -u argument, a similar issue to CVE-2016-3697.