CVE-2014-9356
published 2019-12-02CVE-2014-9356: Path traversal vulnerability in Docker before 1.3.3 allows remote attackers to write to arbitrary files and bypass a container protection mechanism via a full…
PriorityP355high8.6CVSS 3.1
AVNACLPRNUINSCCNIHAN
EPSS
4.92%
91.0th percentile
Path traversal vulnerability in Docker before 1.3.3 allows remote attackers to write to arbitrary files and bypass a container protection mechanism via a full pathname in a symlink in an (1) image or (2) build in a Dockerfile.
Affected
6 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | docker.io | < docker.io 1.3.3~dfsg1-1 (bookworm) | docker.io 1.3.3~dfsg1-1 (bookworm) |
| docker | docker | < 1.3.3 | 1.3.3 |
| github.com | docker_docker | >= 0 < 1.3.3 | 1.3.3 |
| msrc | cbl_mariner_1.0_arm | — | — |
| msrc | cbl_mariner_1.0_x64 | — | — |
| msrc | cm1_moby-buildx_0.4.1+azure-3_on_cbl_mariner_1.0 | — | — |
CVSS provenance
nvdv3.18.6HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:N
nvdv2.08.5HIGHAV:N/AC:L/Au:N/C:N/I:C/A:P
osv8.6HIGH
vendor_debian8.6HIGH
vendor_msrc8.6HIGH
vendor_redhat8.6HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Microsoft
Path traversal vulnerability in Docker before 1.3.3 allows remote attackers to write to arbitrary files and bypass a container protection mechanism via a full pathname in a symlink in an (1) image or
vendor_msrc·2019-12-10·CVSS 8.6
CVE-2014-9356 [HIGH] CWE-22 Path traversal vulnerability in Docker before 1.3.3 allows remote attackers to write to arbitrary files and bypass a container protection mechanism via a full pathname in a symlink in an (1) image or
Path traversal vulnerability in Docker before 1.3.3 allows remote attackers to write to arbitrary files and bypass a container protection mechanism via a full pathname in a symlink in an (1) image or (2) build in a Dockerfile.
FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability?
One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is composed. Microsoft is committed to transparency in this work which is why we began publishing CSAF/VEX in October 2025. See this blog post for more information. If impact to additional products is iden
Red Hat
docker: Path traversal during processing of absolute symlinks
vendor_redhat·2014-12-11·CVSS 8.6
CVE-2014-9356 [HIGH] docker: Path traversal during processing of absolute symlinks
docker: Path traversal during processing of absolute symlinks
Path traversal vulnerability in Docker before 1.3.3 allows remote attackers to write to arbitrary files and bypass a container protection mechanism via a full pathname in a symlink in an (1) image or (2) build in a Dockerfile.
It was found that a malicious container image could overwrite arbitrary portions of the host file system by including absolute symlinks, potentially leading to privilege escalation.
Statement: * This issue affects the versions of Docker as shipped with Red Hat Enterprise Linux 7. However, this flaw is not known to be exploitable under any supported scenario. A future update may address this issue.
* Red Hat does not support or recommend running untrusted images.
* In Red Hat OpenStack Platform, because
Debian
CVE-2014-9356: docker.io - Path traversal vulnerability in Docker before 1.3.3 allows remote attackers to w...
vendor_debian·2014·CVSS 8.6
CVE-2014-9356 [HIGH] CVE-2014-9356: docker.io - Path traversal vulnerability in Docker before 1.3.3 allows remote attackers to w...
Path traversal vulnerability in Docker before 1.3.3 allows remote attackers to write to arbitrary files and bypass a container protection mechanism via a full pathname in a symlink in an (1) image or (2) build in a Dockerfile.
Scope: local
bookworm: resolved (fixed in 1.3.3~dfsg1-1)
bullseye: resolved (fixed in 1.3.3~dfsg1-1)
forky: resolved (fixed in 1.3.3~dfsg1-1)
sid: resolved (fixed in 1.3.3~dfsg1-1)
trixie: resolved (fixed in 1.3.3~dfsg1-1)
OSV
Path Traversal in Docker in github.com/docker/docker
osv·2024-08-21
CVE-2014-9356 Path Traversal in Docker in github.com/docker/docker
Path Traversal in Docker in github.com/docker/docker
Path Traversal in Docker in github.com/docker/docker
GHSA
Path Traversal in Docker
ghsa·2021-05-18
CVE-2014-9356 [MEDIUM] CWE-22 Path Traversal in Docker
Path Traversal in Docker
Path traversal vulnerability in Docker before 1.3.3 allows remote attackers to write to arbitrary files and bypass a container protection mechanism via a full pathname in a symlink in an (1) image or (2) build in a Dockerfile.
OSV
Path Traversal in Docker
osv·2021-05-18
CVE-2014-9356 [MEDIUM] Path Traversal in Docker
Path Traversal in Docker
Path traversal vulnerability in Docker before 1.3.3 allows remote attackers to write to arbitrary files and bypass a container protection mechanism via a full pathname in a symlink in an (1) image or (2) build in a Dockerfile.
OSV
CVE-2014-9356: Path traversal vulnerability in Docker before 1
osv·2019-12-02·CVSS 8.6
CVE-2014-9356 [HIGH] CVE-2014-9356: Path traversal vulnerability in Docker before 1
Path traversal vulnerability in Docker before 1.3.3 allows remote attackers to write to arbitrary files and bypass a container protection mechanism via a full pathname in a symlink in an (1) image or (2) build in a Dockerfile.
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2014-9357 CVE-2014-9356 CVE-2014-9358 docker-io: various flaws [epel-6]
bugzilla·2014-12-11·CVSS 8.6
CVE-2014-9357 [HIGH] CVE-2014-9357 CVE-2014-9356 CVE-2014-9358 docker-io: various flaws [epel-6]
CVE-2014-9357 CVE-2014-9356 CVE-2014-9358 docker-io: various flaws [epel-6]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of Fedora EPEL.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When submitting as an update, use the fedpkg template provided in the next
comment(s). This will include the bug IDs of this tracking bug as well as
the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
fedpkg commit message.
epel-6 tracking bug for docker-io: see blocks bug lis
Bugzilla
CVE-2014-9357 CVE-2014-9356 CVE-2014-9358 docker-io: various flaws [fedora-all]
bugzilla·2014-12-11·CVSS 8.6
CVE-2014-9357 [HIGH] CVE-2014-9357 CVE-2014-9356 CVE-2014-9358 docker-io: various flaws [fedora-all]
CVE-2014-9357 CVE-2014-9356 CVE-2014-9358 docker-io: various flaws [fedora-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of Fedora.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When submitting as an update, use the fedpkg template provided in the next
comment(s). This will include the bug IDs of this tracking bug as well as
the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
fedpkg commit message.
NOTE: this issue affects multiple supported versions o
Bugzilla
CVE-2014-9356 docker: Path traversal during processing of absolute symlinks
bugzilla·2014-12-10·CVSS 8.6
CVE-2014-9356 [HIGH] CVE-2014-9356 docker: Path traversal during processing of absolute symlinks
CVE-2014-9356 docker: Path traversal during processing of absolute symlinks
A problem was reported by Docker Inc. whereby a malicious image could overwrite arbitrary portions of the host filesystem by including absolute symlinks. From the upstream report:
"Path traversal attacks are possible in the processing of absolute symlinks. In checking symlinks for traversals, only relative links were considered. This allowed path traversals to exist where they should have otherwise been prevented. This was exploitable via both archive extraction and through volume mounts.
This vulnerability allowed malicious images or builds from malicious Dockerfiles to write files to the host system and escape containerization, leading to privilege escalation."
Discussion:
Statement:
This issue affects the
2019-12-02
Published