Mintzo Docker-Tester 1.2.1 OS Command Injection Vulnerability

Mintzo Docker-Tester 1.2.1 OS Command Injection Vulnerability

CVE-2021-34079 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

OS Command injection vulnerability in Mintzo Docker-Tester through 1.2.1 allows attackers to execute arbitrary commands via shell metacharacters in the 'ports' entry of a crafted docker-compose.yml file.

Learn more about our Cis Benchmark Audit For Docker.