Vulnerability identifier: #VU28556

Vulnerability risk: Medium

CVSSv3.1: 4.2 [CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L/E:P/RL:O/RC:C]

CVE-ID: CVE-2020-13401

CWE-ID: CWE-451

Exploitation vector: Local network

Exploits in database: 2

• April 1, 2021
  • Docker-Container-CVE-2020-13401 (Study on CVE-2020-13401 vulnerability of containers in dockers older than 19.03.11) [Github]
  • CVE-2020-13401 (Study on CVE-2020-13401 vulnerability of containers in dockers older than 19.04) [Github]

Impact: Information disclosure and denial of service

Vulnerable software:
Docker
Server applications / Virtualization software

Vendor: Docker Inc.