CVE-2014-8178 in Docker and OpenSuse Products
Published on December 17, 2019

Docker Engine before 1.8.3 and CS Docker Engine before 1.6.2-CS7 do not use a globally unique identifier to store image layers, which makes it easier for attackers to poison the image cache via a crafted image in pull or push commands.

NVD

Products Associated with CVE-2014-8178

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2014-8178 are published in these products:

Docker Cs Engine

Docker

OpenSuse

Affected Versions

Docker Engine:

Version before 1.8.3 is affected.

CS Docker Engine:

Version before 1.6.2-CS7 is affected.

Exploit Probability

EPSS

0.15%

Percentile

34.83%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2014-8178 in Docker and OpenSuse ProductsPublished on December 17, 2019

Products Associated with CVE-2014-8178

Affected Versions

Exploit Probability

CVE-2014-8178 in Docker and OpenSuse Products
Published on December 17, 2019