World-writable Docker socket vulnerability in NixOS 17.03 before 17.03.887

World-writable Docker socket vulnerability in NixOS 17.03 before 17.03.887

CVE-2017-7412 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

NixOS 17.03 before 17.03.887 has a world-writable Docker socket, which allows local users to gain privileges by executing docker commands.

Learn more about our Cis Benchmark Audit For Docker.