CVE-2022-30137

Sažetak

Executive Summary An Elevation of Privilege (EOP) vulnerability has been identified within Service Fabric clusters that run Docker containers. Exploitation of this EOP vulnerability requires an attacker to gain remote code execution within a container. All Service Fabric and Docker versions are impacted.

Reference

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30137
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-30137

CVSS

Base:	4.6
Impact:	6.4
Exploitability:	3.9

Pristup

Vektor	Složenost	Autentikacija
LOCAL	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	PARTIAL	PARTIAL

CVSS vektor

AV:L/AC:L/Au:N/C:P/I:P/A:P

Zadnje važnije ažuriranje

02-01-2025 - 19:16

Objavljeno

15-06-2022 - 22:15