CVE-2018-15514

HIGH

Docker - Insecure Deserialization

Title source: rule

Description

HandleRequestAsync in Docker for Windows before 18.06.0-ce-rc3-win68 (edge) and before 18.06.0-ce-win72 (stable) deserialized requests over the \\.\pipe\dockerBackend named pipe without verifying the validity of the deserialized .NET objects. This would allow a malicious user in the "docker-users" group (who may not otherwise have administrator access) to escalate to administrator privileges.

References (4)

Scores

CVSS v3 8.8
EPSS 0.0335
EPSS Percentile 87.2%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Classification

CWE
CWE-502
Status published

Affected Products (50)

docker/docker
docker/docker
docker/docker
docker/docker
docker/docker
docker/docker
docker/docker
docker/docker
docker/docker
docker/docker
docker/docker
docker/docker
docker/docker
docker/docker
docker/docker
... and 35 more

Timeline

Published Sep 01, 2018
Tracked Since Feb 18, 2026