Search CVE reports

Toggle filters

1 – 10 of 70 results

CVE-2026-42306

Medium priority
Needs evaluation

Moby is an open source container framework. In Docker Engine prior to version 29.5.1, Docker Daemon versions 28.5.2 and prior, and Moby Daemon prior to version 2.0.0-beta.14, a race condition during docker cp mount setup allows a...

2 affected packages

docker.io, docker.io-app

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
docker.io Needs evaluation Needs evaluation Needs evaluation Needs evaluation Needs evaluation
docker.io-app Needs evaluation Needs evaluation Needs evaluation Needs evaluation
Show less packages

CVE-2026-41568

Medium priority
Needs evaluation

Moby is an open source container framework. In Docker Engine prior to version 29.5.1, Docker Daemon versions 28.5.2 and prior, and Moby Daemon prior to version 2.0.0-beta.14, a race condition during docker cp mount setup allows a...

2 affected packages

docker.io, docker.io-app

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
docker.io Needs evaluation Needs evaluation Needs evaluation Needs evaluation Needs evaluation
docker.io-app Needs evaluation Needs evaluation Needs evaluation Needs evaluation
Show less packages

CVE-2026-41567

Medium priority
Needs evaluation

Moby is an open source container framework. In versions prior to 29.5.1 and in moby/moby v2 prior to v2.0.0-beta.14, when a compressed archive is uploaded to a container via `PUT /containers/{id}/archive` or piped through `docker...

2 affected packages

docker.io, docker.io-app

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
docker.io Needs evaluation Needs evaluation Needs evaluation Needs evaluation Needs evaluation
docker.io-app Needs evaluation Needs evaluation Needs evaluation Needs evaluation
Show less packages

CVE-2026-33748

Medium priority

Some fixes available 4 of 12

BuildKit is a toolkit for converting source code to build artifacts in an efficient, expressive and repeatable manner. Prior to version 0.28.1, insufficient validation of Git URL fragment subdir components may allow access to...

2 affected packages

docker.io, docker.io-app

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
docker.io Vulnerable Vulnerable Vulnerable Vulnerable Vulnerable
docker.io-app Fixed Fixed Fixed Fixed
Show less packages

CVE-2026-33747

Medium priority

Some fixes available 4 of 12

BuildKit is a toolkit for converting source code to build artifacts in an efficient, expressive and repeatable manner. Prior to version 0.28.1, when using a custom BuildKit frontend, the frontend can craft an API message that...

2 affected packages

docker.io, docker.io-app

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
docker.io Vulnerable Vulnerable Vulnerable Vulnerable Vulnerable
docker.io-app Fixed Fixed Fixed Fixed
Show less packages

CVE-2026-33990

Medium priority
Needs evaluation

Docker Model Runner (DMR) is software used to manage, run, and deploy AI models using Docker. Prior to version 1.1.25, Docker Model Runner contains an SSRF vulnerability in its OCI registry token exchange flow. When pulling a...

2 affected packages

docker.io, docker.io-app

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
docker.io Needs evaluation Needs evaluation Needs evaluation Needs evaluation Needs evaluation
docker.io-app Needs evaluation Needs evaluation Needs evaluation Needs evaluation
Show less packages

CVE-2026-34040

Medium priority
Needs evaluation

Moby is an open source container framework. Prior to version 29.3.1, a security vulnerability has been detected that allows attackers to bypass authorization plugins (AuthZ). This issue has been patched in version 29.3.1.

2 affected packages

docker.io, docker.io-app

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
docker.io Needs evaluation Needs evaluation Needs evaluation Needs evaluation Needs evaluation
docker.io-app Needs evaluation Needs evaluation Needs evaluation Needs evaluation
Show less packages

CVE-2026-33997

Medium priority
Needs evaluation

Moby is an open source container framework. Prior to version 29.3.1, a security vulnerability has been detected that allows plugins privilege validation to be bypassed during docker plugin install. Due to an error in the daemon's...

2 affected packages

docker.io, docker.io-app

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
docker.io Needs evaluation Needs evaluation Needs evaluation Needs evaluation Needs evaluation
docker.io-app Needs evaluation Needs evaluation Needs evaluation Needs evaluation
Show less packages

CVE-2025-54410

Medium priority
Needs evaluation

Moby is an open source container framework developed by Docker Inc. that is distributed as Docker Engine, Mirantis Container Runtime, and various other downstream projects/products. A firewalld vulnerability affects Moby releases...

2 affected packages

docker.io, docker.io-app

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
docker.io Needs evaluation Needs evaluation Needs evaluation Needs evaluation Needs evaluation
docker.io-app Not affected Needs evaluation Needs evaluation Needs evaluation
Show less packages

CVE-2025-54388

Medium priority
Vulnerable

Moby is an open source container framework developed by Docker Inc. that is distributed as Docker Engine, Mirantis Container Runtime, and various other downstream projects/products. In versions 28.2.0 through 28.3.2, when...

2 affected packages

docker.io, docker.io-app

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
docker.io Needs evaluation Needs evaluation Needs evaluation Needs evaluation Needs evaluation
docker.io-app Vulnerable Vulnerable Vulnerable Not affected
Show less packages
  1. Previous page
  2. 1
  3. 2
  4. 3
  5. 4
  6. 5
  7. Next page
Export to JSON