CVE-2015-3630
published 2015-05-18CVE-2015-3630: Docker Engine before 1.6.1 uses weak permissions for (1) /proc/asound, (2) /proc/timer_stats, (3) /proc/latency_stats, and (4) /proc/fs, which allows local…
PriorityP424high7.2CVSS 2.0
AVLACLAuNCCICAC
EPSS
0.55%
41.7th percentile
Docker Engine before 1.6.1 uses weak permissions for (1) /proc/asound, (2) /proc/timer_stats, (3) /proc/latency_stats, and (4) /proc/fs, which allows local users to modify the host, obtain sensitive information, and perform protocol downgrade attacks via a crafted image.
Affected
5 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | docker.io | < docker.io 1.6.1+dfsg1-1 (bookworm) | docker.io 1.6.1+dfsg1-1 (bookworm) |
| docker | docker | <= 1.6 | — |
| github.com | docker_docker | >= 1.6.0 < 1.6.1 | 1.6.1 |
| msrc | cbl_mariner_1.0_arm | — | — |
| msrc | cbl_mariner_1.0_x64 | — | — |
CVSS provenance
nvdv2.07.2HIGHAV:L/AC:L/Au:N/C:C/I:C/A:C
osv7.2HIGH
vendor_debian7.2HIGH
vendor_msrc7.2HIGH
vendor_redhat7.2HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Microsoft
CVE-2015-3630: NIST NVD Details: https://nvd
vendor_msrc·2021-07-13·CVSS 7.2
CVE-2015-3630 [HIGH] CVE-2015-3630: NIST NVD Details: https://nvd
NIST NVD Details: https://nvd.nist.gov/vuln/detail/CVE-2015-3630
Mariner: Mariner
[email protected]: [email protected]
Exploit Status: DOS:N/A
Remediation: moby-buildx
Red Hat
docker: Read/write proc paths allow host modification & information disclosure
vendor_redhat·2015-05-07·CVSS 7.2
CVE-2015-3630 [HIGH] docker: Read/write proc paths allow host modification & information disclosure
docker: Read/write proc paths allow host modification & information disclosure
Docker Engine before 1.6.1 uses weak permissions for (1) /proc/asound, (2) /proc/timer_stats, (3) /proc/latency_stats, and (4) /proc/fs, which allows local users to modify the host, obtain sensitive information, and perform protocol downgrade attacks via a crafted image.
Debian
CVE-2015-3630: docker.io - Docker Engine before 1.6.1 uses weak permissions for (1) /proc/asound, (2) /proc...
vendor_debian·2015·CVSS 7.2
CVE-2015-3630 [HIGH] CVE-2015-3630: docker.io - Docker Engine before 1.6.1 uses weak permissions for (1) /proc/asound, (2) /proc...
Docker Engine before 1.6.1 uses weak permissions for (1) /proc/asound, (2) /proc/timer_stats, (3) /proc/latency_stats, and (4) /proc/fs, which allows local users to modify the host, obtain sensitive information, and perform protocol downgrade attacks via a crafted image.
Scope: local
bookworm: resolved (fixed in 1.6.1+dfsg1-1)
bullseye: resolved (fixed in 1.6.1+dfsg1-1)
forky: resolved (fixed in 1.6.1+dfsg1-1)
sid: resolved (fixed in 1.6.1+dfsg1-1)
trixie: resolved (fixed in 1.6.1+dfsg1-1)
OSV
Information Exposure in Docker Engine in github.com/docker/docker
osv·2024-08-21
CVE-2015-3630 Information Exposure in Docker Engine in github.com/docker/docker
Information Exposure in Docker Engine in github.com/docker/docker
Information Exposure in Docker Engine in github.com/docker/docker
GHSA
Information Exposure in Docker Engine
ghsa·2022-02-15
CVE-2015-3630 [HIGH] CWE-285 Information Exposure in Docker Engine
Information Exposure in Docker Engine
Docker Engine before 1.6.1 uses weak permissions for (1) /proc/asound, (2) /proc/timer_stats, (3) /proc/latency_stats, and (4) /proc/fs, which allows local users to modify the host, obtain sensitive information, and perform protocol downgrade attacks via a crafted image.
OSV
Information Exposure in Docker Engine
osv·2022-02-15
CVE-2015-3630 [HIGH] Information Exposure in Docker Engine
Information Exposure in Docker Engine
Docker Engine before 1.6.1 uses weak permissions for (1) /proc/asound, (2) /proc/timer_stats, (3) /proc/latency_stats, and (4) /proc/fs, which allows local users to modify the host, obtain sensitive information, and perform protocol downgrade attacks via a crafted image.
OSV
CVE-2015-3630: Docker Engine before 1
osv·2015-05-18·CVSS 7.2
CVE-2015-3630 [HIGH] CVE-2015-3630: Docker Engine before 1
Docker Engine before 1.6.1 uses weak permissions for (1) /proc/asound, (2) /proc/timer_stats, (3) /proc/latency_stats, and (4) /proc/fs, which allows local users to modify the host, obtain sensitive information, and perform protocol downgrade attacks via a crafted image.
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2015-3630 docker-io: docker: Read/write proc paths allow host modification & information disclosure [epel-6]
bugzilla·2015-05-08·CVSS 7.2
CVE-2015-3630 [HIGH] CVE-2015-3630 docker-io: docker: Read/write proc paths allow host modification & information disclosure [epel-6]
CVE-2015-3630 docker-io: docker: Read/write proc paths allow host modification & information disclosure [epel-6]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of Fedora EPEL.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When submitting as an update, use the fedpkg template provided in the next
comment(s). This will include the bug IDs of this tracking bug as well as
the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
fedpkg commit message.
epel-6 tracking
Bugzilla
CVE-2015-3630 docker-io: docker: Read/write proc paths allow host modification & information disclosure [fedora-all]
bugzilla·2015-05-08·CVSS 7.2
CVE-2015-3630 [HIGH] CVE-2015-3630 docker-io: docker: Read/write proc paths allow host modification & information disclosure [fedora-all]
CVE-2015-3630 docker-io: docker: Read/write proc paths allow host modification & information disclosure [fedora-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of Fedora.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When submitting as an update, use the fedpkg template provided in the next
comment(s). This will include the bug IDs of this tracking bug as well as
the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
fedpkg commit message.
NOTE: this issue
Bugzilla
CVE-2015-3630 docker: Read/write proc paths allow host modification & information disclosure
bugzilla·2015-05-06·CVSS 7.2
CVE-2015-3630 [HIGH] CVE-2015-3630 docker: Read/write proc paths allow host modification & information disclosure
CVE-2015-3630 docker: Read/write proc paths allow host modification & information disclosure
The following flaw was reported in Docker:
Several paths underneath /proc were writable from containers, allowing global system manipulation and configuration. These paths included /proc/asound, /proc/timer_stats, /proc/latency_stats, and /proc/fs.
By allowing writes to /proc/fs, it has been noted that CIFS volumes could be forced into a protocol downgrade attack by a root user operating inside of a container. Machines having loaded the timer_stats module were vulnerable to having this mechanism enabled and consumed by a container.
Docker Engine 1.6.1 address this vulnerability.
Acknowledgements:
Red Hat would like to thank Eric Windisch of the Docker project for reporting this issue.
Discu
http://lists.opensuse.org/opensuse-updates/2015-05/msg00023.htmlhttp://packetstormsecurity.com/files/131835/Docker-Privilege-Escalation-Information-Disclosure.htmlhttp://seclists.org/fulldisclosure/2015/May/28http://www.securityfocus.com/bid/74566https://groups.google.com/forum/#%21searchin/docker-user/1.6.1/docker-user/47GZrihtr-4/nwgeOOFLexIJhttp://lists.opensuse.org/opensuse-updates/2015-05/msg00023.htmlhttp://packetstormsecurity.com/files/131835/Docker-Privilege-Escalation-Information-Disclosure.htmlhttp://seclists.org/fulldisclosure/2015/May/28http://www.securityfocus.com/bid/74566https://groups.google.com/forum/#%21searchin/docker-user/1.6.1/docker-user/47GZrihtr-4/nwgeOOFLexIJ
2015-05-18
Published