{"id":"CVE-2014-9356","details":"Path traversal vulnerability in Docker before 1.3.3 allows remote attackers to write to arbitrary files and bypass a container protection mechanism via a full pathname in a symlink in an (1) image or (2) build in a Dockerfile.","aliases":["GHSA-vj3f-3286-r4pf","GO-2022-0751"],"modified":"2026-03-12T02:17:41.665806883Z","published":"2019-12-02T18:15:10Z","withdrawn":"2026-01-27T04:13:30.995369Z","related":["CGA-hcrc-q69w-89wr","SUSE-SU-2025:03540-1","SUSE-SU-2025:03545-1","openSUSE-SU-2024:10532-1","openSUSE-SU-2025:15589-1"],"references":[{"type":"ADVISORY","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1172761"},{"type":"WEB","url":"http://www.securityfocus.com/archive/1/archive/1/534215/100/0/threaded"}],"schema_version":"1.7.3","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:N"}]}