Docker Vulnerabilities
Comprehensive security vulnerability database for Docker products
2
0
1
0
Severity Distribution
| Description | Vendor / Product | Exploit Status | |||
|---|---|---|---|---|---|
| CVE-2026-2664 | 6.8 | This vulnerability allows a local attacker to read sensitive data from the Docker Desktop environment on Windows, Linux, and macOS, potentially leading to unauthorized access or manipulation of system information. It affects versions up to 4.61.0, so users should upgrade to 4.62.0 or later to protect against this issue. | dockerdesktop | Exploit Available | about 1 month agoFeb 24, 2026 |
| CVE-2025-64443 | 7.3 | An attacker can exploit a vulnerability in MCP Gateway to manipulate servers behind it if the victim visits a malicious website while the gateway is in streaming mode. This requires the attacker to trick the victim into clicking a link or viewing an ad, but the issue is fixed in version 0.28.0. | dockermcp gateway | Theoretical | 4 months agoDec 3, 2025 |
About Docker Security
This page tracks all publicly disclosed security vulnerabilities (CVEs) affecting Docker products. Our database is updated in real-time from the National Vulnerability Database (NVD) and enriched with exploit information from GitHub and other security research sources.
Each CVE listing includes CVSS severity scores, exploit availability status, AI-powered vulnerability summaries, and links to official patches and security advisories.