Docker Engine < 23.0.15 / 26.x < 26.1.5 / 27.x < 27.1.1 Authentication Bypass

critical Nessus Plugin ID 204784

Version 1.4

Dec 12, 2024, 12:26 PM

  • Detection (added check for package association)

Plugin Feed: 202412121226

Version 1.3

Oct 31, 2024, 3:51 PM

  • Plugin categorization (adding agent attribute)

Plugin Feed: 202410311551

Version 1.2

Jul 29, 2024, 7:22 AM

  • CVSS temporal metrics ("CVSSv2 temporal vector" set to "CVSS2#E:POC/RL:OF/RC:C")
  • CVSS temporal metrics ("CVSSv3 temporal vector" set to "CVSS:3.0/E:P/RL:O/RC:C")
  • Exploit attributes ("Exploit available" set to "True")
  • Exploit attributes ("Exploitability ease" set to "Exploits are available")

Plugin Feed: 202407290722

Version 1.1

Jul 26, 2024, 6:35 PM

  • New

Plugin Feed: 202407261835

* Changelogs are generally available for changes made after Nov 1, 2022