What is the CVSS score of CVE-2026-24740?

CVE-2026-24740 has a CVSS 3.1 base score of 9.9 (Critical). CVSS vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:L. EPSS exploitation probability: 0.0%.

Which versions of Docker are affected by CVE-2026-24740?

CVE-2026-24740 is a critical vulnerability (CVSS 9.9) in Dozzle, a Docker log viewer tool, with active public exploits available.. A patch is available.

Is there a public PoC exploit available for CVE-2026-24740?

Yes, a public proof-of-concept exploit is available for CVE-2026-24740. Prioritise patching immediately. EPSS: 0.0%.

How to fix or mitigate CVE-2026-24740?

Within 24 hours: Identify all systems running Dozzle and assess their exposure to untrusted networks; isolate or restrict network access to affected instances if patching cannot be completed immediately. Within 7 days: Apply the available vendor patch to all Dozzle installations and verify successful deployment. Within 30 days: Conduct a log review to determine if the vulnerability was exploited during the exposure window and implement network segmentation to restrict Dozzle access to authorized administrative users only.

Docker CVE-2026-24740

CRITICAL

Improper Access Control (CWE-284)

2026-01-27 security-advisories@github.com

GHSA-m855-r557-5rc5

Docker Dozzle Suse

9.9

CVSS 3.1 · GitHub Advisory

Severity by source

GitHub Advisory PRIMARY

9.9 CRITICAL

AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:L

SUSE

8.7 HIGH

qualitative

Primary rating from GitHub Advisory.

CVSS VectorGitHub Advisory

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:L

Attack Vector

Network

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Changed

Confidentiality

High

Integrity

High

Availability

Low

Lifecycle Timeline

Analysis Generated

Mar 12, 2026 - 21:55 vuln.today

PoC Detected

Feb 19, 2026 - 21:30 vuln.today

Public exploit code

Patch released

Feb 19, 2026 - 21:30 nvd

Patch available

CVE Published

Jan 27, 2026 - 21:16 nvd

CRITICAL 9.9

DescriptionGitHub Advisory

Dozzle is a realtime log viewer for docker containers. Prior to version 9.0.3, a flaw in Dozzle’s agent-backed shell endpoints allows a user restricted by label filters (for example, label=env=dev) to obtain an interactive root shell in out‑of‑scope containers (for example, env=prod) on the same agent host by directly targeting their container IDs. Version 9.0.3 contains a patch for the issue.

AnalysisAI

Critical access control flaw in Dozzle Docker log viewer allows users restricted by label filters to escape their scope and obtain an interactive root shell on out-of-scope containers. PoC available, patch in v9.0.3.

Unlock full vulnerability intelligence

Risk assessment & exploitation conditions
Attack chain visualization
Remediation with exact patch versions
Threat intelligence from 22 sources
Personal watchlist & email alerts

Continue with Google Continue with GitHub

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access

Authenticated user obtains out-of-scope container ID

Exploit

Directly target shell endpoint with container ID

Execution

Bypass label-based access controls

Impact

Obtain interactive root shell in restricted container

Access

Authenticated user obtains out-of-scope container ID

Exploit

Directly target shell endpoint with container ID

Execution

Bypass label-based access controls

Impact

Obtain interactive root shell in restricted container

Vulnerability AssessmentAI

Exploitation	Dozzle versions before 9.0.3 with agent-backed shell endpoints enabled. … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment	CVSS 9.9 with scope change. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario	Developer with dev-only access exploits shell endpoint to access production containers, reads secrets, modifies running services, or pivots to the host.
Remediation	Update to Dozzle 9.0.3. … Detailed patch versions, workarounds, and compensating controls in full report.

Recommended ActionAI

Within 24 hours: Identify all systems running Dozzle and assess their exposure to untrusted networks; isolate or restrict network access to affected instances if patching cannot be completed immediately. …

Threat intelligence, references, and detailed analysis are available after sign-in.