A vulnerability in the Mailcow email software allows attackers to inject malicious code into the database that gets executed later during quarantine notifications, potentially exposing sensitive data like administrator credentials.
A vulnerability in Neko software (virtual browser running in Docker) allows any authenticated user to immediately gain full administrative control over the entire instance, resulting in complete compromise of the system.
A security vulnerability in OpenClaw allows attackers to bypass security controls by overriding environment variables, thereby circumventing proxy settings, TLS verification, and Docker restrictions.
A critical security vulnerability in Flowsint, an OSINT analysis tool, allows attackers to execute arbitrary system commands as administrator by injecting special characters into organization nodes and escaping from Docker containers.
A vulnerability in Arcane, a Docker management interface, allows attackers to make the server send HTTP requests to arbitrary URLs and receive the responses without requiring authentication.
A vulnerability in the Docker management application Dockyard allows attackers to start or stop containers through malicious links when clicked by an administrator.
A vulnerability in Sonicverse Radio software allows authenticated users to make arbitrary HTTP requests from the server to internal or external systems, potentially exposing sensitive data or attacking internal services.
A vulnerability in suvarchal docker-mcp-server allows attackers to inject and execute malicious operating system commands through the HTTP interface. This can lead to complete system compromise.
A vulnerability in the BentoML Python library allows attackers to execute malicious code on the host system when users import a manipulated bento archive and containerize it.
A vulnerability in Aperi'Solve allows attackers to execute arbitrary code and gain full server control through unsanitized password inputs when uploading JPEG files.
A vulnerability in the Kestra orchestration platform allows authenticated users to execute arbitrary commands on the server by visiting a crafted link.
Docker Model Runner has a vulnerability that allows attackers to target internal network services and steal their data by using malicious container registries.
A vulnerability in the Claude SDK for Python stored files with insecure permissions, allowing local attackers on shared systems to read sensitive data or manipulate AI model behavior in Docker environments.
A security vulnerability in Admidio (not Docker Engine) allows attackers to access uploaded documents without authentication via HTTP, because the Apache configuration in the Docker image ignores access restrictions.
A security vulnerability in the act software (not Docker Engine) allows network attackers to create malicious cache files and retrieve existing caches, potentially leading to malicious code execution within Docker containers.
Docker Engine has a vulnerability in plugin installation where permission checks can be bypassed. The system incorrectly accepts different privileges than those approved by the user, potentially allowing plugins to gain extended system access.
CrewAI fails to properly verify if Docker is still running during execution and falls back to insecure sandbox settings that allow attackers to execute arbitrary code.
A flaw in CrewAI CodeInterpreter allows execution of arbitrary C functions when Docker is unavailable and the system falls back to SandboxPython, potentially leading to complete system compromise.
A vulnerability in Home Assistant allows devices on the local network to access internal endpoints without authentication that should have been protected.
Wazuh installation scripts and Docker files use insecure downloads without SSL certificate validation, allowing network attackers to inject malicious code and compromise the software supply chain.
A vulnerability in Docker BuildKit allows attackers to access files outside the intended repository directory through manipulated Git URLs, potentially exposing sensitive data from the same filesystem.
A vulnerability in the BentoML Python library allows attackers to execute arbitrary commands during Docker container creation by inserting malicious values into the configuration file.
A vulnerability in the Zabbix Agent 2 Docker plugin allows attackers to read arbitrary files from running Docker containers by injecting malicious parameters into the Docker API.
A vulnerability in FastGPT allows external contributors to execute malicious code and steal secrets by injecting manipulated Docker containers through pull requests.
The AVideo video platform ships with the default admin password "password" that is automatically used during installation. Attackers can immediately gain full control over unprotected installations and steal user data or execute malicious code.
A critical vulnerability in Docker Engine allows trusted users to bypass network isolation between containers and access services in other container networks.
A vulnerability in SiYuan (not Docker Engine) allows administrators to write files to arbitrary system locations, potentially leading to data destruction or complete system compromise.
SiYuan, a knowledge management system, allows administrators to copy and read sensitive files like Docker secrets or system files outside the intended workspace through an inadequately secured API.
A vulnerability in Softing smartLinks software on Docker allows unauthorized access to system files through improper URL validation in the webserver component.
OneUptime software logs password reset links containing secret tokens in standard log files, allowing attackers with log access to take over other users' accounts.
A vulnerability in the Dagu workflow engine allows attackers to delete critical system files through manipulated path inputs, potentially causing complete system failure.
LinkAce, a self-hosted link archiving software, allows attackers to access internal network resources and cloud metadata through the link creation feature due to missing validation of private IP addresses.
WeKnora, an AI framework for document processing, has a security flaw in its URL import feature that allows attackers to access internal server services through redirects and potentially retrieve confidential data.
A vulnerability in AVideo's Docker configuration exposes the Memcached service without authentication over the internet, allowing attackers to manipulate user sessions and hijack administrator accounts.
A vulnerability in OpenClaw allows attackers to manipulate the cache through SHA-1 collisions, causing sandbox configurations to be swapped and enabling reuse of unsafe states.
Docker CLI for Windows searches for plugin files in a directory that doesn't exist by default, allowing low-privileged attackers to place malicious plugins that get executed when using Docker, potentially enabling privilege escalation.
A flaw in the kaniko container build tool allows attackers to write files outside the intended directory, which can lead to code execution in certain environments.
Docker Model Runner has a vulnerability that allows attackers to overwrite or create arbitrary files without authentication. This can lead to destruction of all Docker containers and data, or in certain cases even enable container escapes.
A vulnerability in Canarytokens allows attackers to inject malicious JavaScript code into PWA tokens that executes when someone visits the installation page, though no sensitive data is exposed.
A vulnerability in the Beszel server monitoring platform allows authenticated users to access arbitrary Docker API endpoints through manipulated parameters, potentially exposing sensitive infrastructure information.
A vulnerability in WireGuard Portal allows regular users to grant themselves administrator privileges by modifying their profile data with a specific parameter.
A security vulnerability in an API gateway deployment tool allows attackers to execute arbitrary commands with root privileges and potentially escape the container to compromise the underlying infrastructure.
A vulnerability in Docker Desktop's grpcfuse kernel module allows local attackers to read memory outside intended boundaries by writing to specific system files, potentially causing unspecified damage to the system.
BigBlueButton software contains flawed documentation that instructs administrators to unsafely configure an antivirus scanner service, allowing attackers to overload or crash the server.
A vulnerability in OpenClaw (not Docker Engine) causes changes in configuration setting order to go undetected, potentially leading to continued use of outdated containers.
A vulnerability in OpenClaw (an AI assistant) allows attackers to inject dangerous Docker settings, enabling containers to escape their sandbox and access the host system.
A security vulnerability in Trivy Action (GitHub tool for scanning Docker images) allows attackers to execute arbitrary commands when user-controlled inputs are improperly processed.
A vulnerability in Keycloak allows disabled Docker registry clients to continue receiving authentication tokens, bypassing administrative controls and potentially enabling unintended access to container registry resources.
A security flaw in Crawl4AI before version 0.8.0 allows attackers to read arbitrary files from the server by sending special URLs to certain endpoints, potentially stealing sensitive data like passwords or API keys.
A vulnerability in Crawl4AI (not Docker Engine) allows attackers to execute arbitrary Python code through a web interface, potentially leading to complete server takeover.
OpenFGA, an authorization engine, has a flaw in versions 1.8.5 to 1.11.2 that causes improper policy enforcement, potentially allowing incorrect permission checks under specific conditions.