CVE-2014-5282
HIGH8.1EPSS 0.58%Published: 2/6/2018Modified: 4/28/2026
Also known as:DEBIAN-CVE-2014-5282
Description
Docker before 1.3 does not properly validate image IDs, which allows remote attackers to redirect to another image through the loading of untrusted images via 'docker load'.
Affected packages (1)
- Debian/docker.iofrom 0, < 1.3.0~dfsg1-1
CVSS scores
| Source | Version | Severity | Vector |
|---|---|---|---|
| osv | CVSS 3.1 | HIGH8.1 | CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N |