virus logo FortiClient Vulnerability

Docker CVE-2019-13509 Information Disclosure Vulnerability

description-logoDescription

In Docker CE and EE before 18.09.8 (as well as Docker EE before 17.06.2-ee-23 and 18.x before 18.03.1-ee-10), Docker Engine in debug mode may sometimes add secrets to the debug log. This applies to a scenario where docker stack deploy is run to redeploy a stack that includes (non external) secrets. It potentially applies to other API users of the stack API if they resend the secret.

affected-products-logoAffected Applications

Docker

CVE References

CVE-2019-13509

Other References

https://www.docker.com/blog/category/products/
ID 60382
Created Jan 17, 2020
Description
Updated		 Dec 15, 2023
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon
Coverage FortiClient
OS Linux
Vendor Docker
Patch manual
Application Docker