CVE-2022-24769
CWE-732 — Incorrect Permission AssignmentCWE-276 — Incorrect Default Permissions11 documents8 sources
Severity
5.9MEDIUM
EPSS
0.1%
top 73.23%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
Timeline
PublishedMar 24
Latest updateAug 21
Description
Moby is an open-source project created by Docker to enable and accelerate software containerization. A bug was found in Moby (Docker Engine) prior to version 20.10.14 where containers were incorrectly started with non-empty inheritable Linux process capabilities, creating an atypical Linux environment and enabling programs with inheritable file capabilities to elevate those capabilities to the permitted set during `execve(2)`. Normally, when executable programs have specified permitted file capa…
CVSS vector
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:LExploitability: 2.5 | Impact: 3.4
Affected Packages6 packages
Also affects: Debian Linux 11.0, Fedora 34, 35, 36