News

Critical Docker Desktop flaw lets attackers hijack Windows hosts

A critical vulnerability in Docker Desktop for Windows and macOS allows compromising the host by running a malicious ...
The Hacker News4d

Docker Fixes CVE-2025-9074, Critical Container Escape Vulnerability With CVSS Score 9.3

Docker patched CVE-2025-9074 (CVSS 9.3), a flaw enabling container escape via unauthenticated API, risking host takeover.

Docker Desktop bug let containers hop the fence with barely a nudge

"A malicious container running on Docker Desktop could access the Docker Engine and launch additional containers without ...
SecurityWeek3d

Docker Desktop Vulnerability Leads to Host Compromise

A critical vulnerability in Docker Desktop allows attackers to modify the filesystem of Windows hosts to become ...
CSO Online3d

Critical Docker Desktop flaw allows container escape

Missing authentication on the Docker Engine management API for Docker Desktop on Windows and Mac allows attackers to break ...
heise online4mon

Docker: Rights escalation gap in Desktop for Windows

Updated Docker Desktop software packages close a security gap that could allow attackers to extend their rights in the system. The Windows version of the container software is affected.
Infosecurity-magazine.com1y

Python Malware Poses DDoS Threat Via Docker API Misconfiguration

Security researchers have identified a new cyber-threat targeting publicly exposed instances of the Docker Engine API. In this campaign, attackers exploit misconfigurations to deploy a malicious ...
Make Tech Easier2d

Docker Desktop vs Docker Engine: What’s the Difference?

Learn the key differences between Docker Desktop and Docker Engine to optimize containerization, DevOps workflows, and development setups.