ZDI-CAN-27571
HIGH 7.5
Overdue
Jul 10, 2025
Docker
Docker is a widely-used containerization platform that allows developers to package and run applications in isolated environments. This high-severity vulnerability requires local access with high privileges to exploit, but once successful it can compromise system confidentiality, integrity, and availability across multiple systems. Security teams should monitor for patches from Docker by November 7, 2025, and prioritize updating systems where administrative access is a concern, particularly in multi-tenant container environments.
Advisory Details
Researcher
Discovered by:
Nitesh Surana (niteshsurana.com) & Nelson William Gamazo Sanchez of Trend Research
Reported
July 10, 2025
Deadline
November 07, 2025
160d overdue
CVSS Vector
AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H