Main Vulnerability Database Exploits ID:10159 - Exploit for Improper Preservation of Permissions in moby - CVE-2021-41091

ID:10159 - Exploit for Improper Preservation of Permissions in moby - CVE-2021-41091

Published: July 5, 2024

Vulnerability identifier: #VU64416

Vulnerability risk: Low

CVE-ID: CVE-2021-41091

CWE-ID: CWE-281

Exploitation vector: Local access

Vulnerable software:
moby

Link to public exploit:

https://github.com/SNE-M23-SN/Vulnerable-Docker-Engine

Vulnerability description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to application does not properly impose security restrictions, which leads to security restrictions bypass and privilege escalation.

Remediation

Install updates from vendor's website.

ID:10159 - Exploit for Improper Preservation of Permissions in moby - CVE-2021-41091

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human