Runcom

**Name of the Vulnerable Software and Affected Versions** Docker/Moby versions 1.11 through current **Description** The issue concerns the default OCI linux spec in Docker/Moby, which fails to block /proc/acpi pathnames. This flaw allows an attacker to modify the host's hardware, such as enabling or disabling Bluetooth, or adjusting keyboard brightness. **Recommendations** For Docker/Moby versions 1.11 through current, consider restricting access to the /proc/acpi pathnames to prevent unauthorized modification of the host's hardware. As a temporary workaround, restrict the functionality that utilizes the /proc/acpi path to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.