CVE-2020-13401

MEDIUM

Docker Engine <19.03.11 - SSRF

Title source: llm

Description

An issue was discovered in Docker Engine before 19.03.11. An attacker in a container, with the CAP_NET_RAW capability, can craft IPv6 router advertisements, and consequently spoof external IPv6 hosts, obtain sensitive information, or cause a denial of service.

Exploits (1)

nomisec WRITEUP 2 stars

by arax-zaeimi · poc

https://github.com/arax-zaeimi/Docker-Container-CVE-2020-13401

View Code ZIP pw:eip

References (9)

[Broken Link] http://lists.opensuse.org/opensuse-security-announce/2020-06/msg00040.html

[Mailing List, Third Party Advisory] http://www.openwall.com/lists/oss-security/2020/06/01/5

[Release Notes, Vendor Advisory] https://docs.docker.com/engine/release-notes/

[Release Notes, Third Party Advisory] https://github.com/docker/docker-ce/releases/tag/v19.03.11

[Third Party Advisory] https://security.gentoo.org/glsa/202008-15

[Third Party Advisory] https://security.netapp.com/advisory/ntap-20200717-0002/

[Third Party Advisory] https://www.debian.org/security/2020/dsa-4716

[Mailing List, Third Party Advisory] https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DN4JQAOXBE3XUNK3FD423LHE3K74EMJT/

[Mailing List, Third Party Advisory] https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KJZLKRCOJMOGUIJI2AS27BOZS3RBEF3K/

Scores

CVSS v3 6.0

EPSS 0.1287

EPSS Percentile 94.1%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:L

Details

CWE

CWE-20

Status published

Products (6)

broadcom/sannav

debian/debian_linux 10.0

docker/docker-ce 0 - 19.03.11Go

docker/engine < 19.03.11

fedoraproject/fedora 31

fedoraproject/fedora 32

Published Jun 02, 2020

Tracked Since Feb 18, 2026