News

SecurityWeek6d

Docker Desktop Vulnerability Leads to Host Compromise

A critical vulnerability in Docker Desktop allows attackers to modify the filesystem of Windows hosts to become ...
The Hacker News6d

Docker Fixes CVE-2025-9074, Critical Container Escape Vulnerability With CVSS Score 9.3

Docker patched CVE-2025-9074 (CVSS 9.3), a flaw enabling container escape via unauthenticated API, risking host takeover.
CSO Online5d

Critical Docker Desktop flaw allows container escape

Missing authentication on the Docker Engine management API for Docker Desktop on Windows and Mac allows attackers to break ...

Critical Docker Desktop flaw lets attackers hijack Windows hosts

A critical vulnerability in Docker Desktop for Windows and macOS allows compromising the host by running a malicious container, even if the Enhanced Container Isolation (ECI) protection is active.

A critical Docker Desktop security flaw puts Windows hosts at risk of attack, so patch now

Researchers find 9.3/10 flaw in Docker Desktop for Windows and macOS The bug allows threat actors to compromise underlying hosts and tamper with data A fix was quickly released, so users should patch ...