CVE-2018-10892

The default OCI linux spec in oci/defaults{_linux}.go in Docker/Moby from 1.11 to current does not block /proc/acpi pathnames. The flaw allows an attacker to modify host's hardware like enabling/disabling bluetooth or turning up/down keyboard brightness.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
5.3 MEDIUM
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
redhatCNA
6.3 MEDIUM
LOCAL
LOW
LOW
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:L
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 42%
VendorProductVersion
dockerdocker
1.11 ≤
𝑥
≤ 18.03.1
dockerdocker
1.11 ≤
𝑥
≤ 18.03.1
mobyprojectmoby
1.11 ≤
𝑥
≤ 17.03.2
redhatenterprise_linux
7.0
redhatenterprise_linux_server
7.0
opensuseleap
15.0
opensuseleap
15.1
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
docker.io
bullseye
20.10.5+dfsg1-1+deb11u2
fixed
bullseye (security)
20.10.5+dfsg1-1+deb11u3
fixed
bookworm
20.10.24+dfsg1-1
fixed
trixie
26.1.5+dfsg1-2
fixed
sid
26.1.5+dfsg1-4
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
docker.io
cosmic
Fixed 18.06.1-0ubuntu1
released
bionic
Fixed 18.06.1-0ubuntu1~18.04.1
released
artful
ignored
xenial
Fixed 18.06.1-0ubuntu1~16.04.2
released
trusty
dne
Common Weakness Enumeration
References
http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00084.html
https://access.redhat.com/errata/RHBA-2018:2796
https://access.redhat.com/errata/RHSA-2018:2482
https://access.redhat.com/errata/RHSA-2018:2729
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-10892
https://github.com/moby/moby/pull/37404
http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00084.html
https://access.redhat.com/errata/RHBA-2018:2796
https://access.redhat.com/errata/RHSA-2018:2482
https://access.redhat.com/errata/RHSA-2018:2729
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-10892
https://github.com/moby/moby/pull/37404