Docker Symlink-Race Vulnerability Could Allow Unauthorized Data Access

May 29, 2019

“It’s a pretty serious vulnerability because it can totally violate the data integrity or confidentiality in place, because the attacker can both read and modify files,” within the container or host system, said Kelly Shortridge, vice president of product strategy at production Linux security provider Capsule8, an author of a blog post describing the vulnerability in greater detail.