
Find real vulnerabilities before they ship
Docker before 1.3 does not properly validate image IDs, which allows remote attackers to redirect to another image through the loading of untrusted images via 'docker load'.
Base Score
8.1| Base Score | 8.1 |
|---|---|
| Vector String | CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N |
| Base Severity | High |
| Version | 3.0 |
| Attack Vector (AV) | NETWORK |