CVE-2020-11075P2CRITICALCVSS 9.9v= 0.7.02020-05-27
CVE-2020-11075 [CRITICAL] CWE-114 CVE-2020-11075: In Anchore Engine version 0.7.0, a specially crafted container image manifest, fetched from a regist
In Anchore Engine version 0.7.0, a specially crafted container image manifest, fetched from a registry, can be used to trigger a shell escape flaw in the anchore engine analyzer service during an image analysis process. The image analysis operation can only be executed by an authenticated user via a valid API request to anchore engine, or if an al
nvd