From 245a047f262f702c8177d698a12ab431f94b9492 Mon Sep 17 00:00:00 2001
From: Robert Dick <robert@doyensec.com>
Date: Thu, 28 May 2026 09:50:19 -0400
Subject: [PATCH] added docker-compose to ray cve-2023-48022

---
 ray/CVE-2023-48022/README.md           |  9 ++++++++-
 ray/CVE-2023-48022/docker-compose.yaml | 12 ++++++++++++
 2 files changed, 20 insertions(+), 1 deletion(-)
 create mode 100644 ray/CVE-2023-48022/docker-compose.yaml

diff --git a/ray/CVE-2023-48022/README.md b/ray/CVE-2023-48022/README.md
index 5846ba67..45d70b93 100644
--- a/ray/CVE-2023-48022/README.md
+++ b/ray/CVE-2023-48022/README.md
@@ -1,4 +1,11 @@
 # CVE-2023-48022 ray RCE
 This directory contains the deployment configs for ray in a configuration
 vulnerable to CVE-2023-48022.
-The deployed service has name `cve-2023-48022` and listens on port `80`.
\ No newline at end of file
+The deployed service has name `cve-2023-48022` and listens on port `80`.
+
+## Docker Compose
+Requires a linux/amd64 machine. For some reason the job worker crashed on ARM/new Macbook.
+```
+docker compose up
+```
+The vulnerable service is on port 8081. There is no non-vulnerable service because the vendor said that it must be restricted.
diff --git a/ray/CVE-2023-48022/docker-compose.yaml b/ray/CVE-2023-48022/docker-compose.yaml
new file mode 100644
index 00000000..ef40cc30
--- /dev/null
+++ b/ray/CVE-2023-48022/docker-compose.yaml
@@ -0,0 +1,12 @@
+version: "3.8"
+
+services:
+  cve-2023-48022:
+    image: rayproject/ray:2.5.0@sha256:cb53dcc21af8f913978fd2a3fc57c812f87d99e0b40db6a42ccd6f43eca11281
+    container_name: cve-2023-48022
+    shm_size: "2.40gb"
+    ports:
+      - "8081:8265"
+    command: >
+      /bin/bash -c "ray start --head --dashboard-host=0.0.0.0 --include-dashboard=true && tail -f /dev/null"
+    restart: unless-stopped
\ No newline at end of file