CVE-2026-2664
published 2026-02-24CVE-2026-2664: An out of bounds read vulnerability in the grpcfuse kernel module present in the Linux VM in Docker Desktop for Windows, Linux and macOS up to version 4.61.0…
PriorityP340high7.8CVSS 3.1
AVLACLPRLUINSUCHIHAH
EPSS
0.19%
8.4th percentile
An out of bounds read vulnerability in the grpcfuse kernel module present in the Linux VM in Docker Desktop for Windows, Linux and macOS up to version 4.61.0 could allow a local attacker to cause an unspecified impact by writing to /proc/docker entries. The issue has been fixed in Docker Desktop 4.62.0 .
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| docker | desktop | < 4.62.0 | 4.62.0 |
| docker | docker_desktop | < 4.62.0 | 4.62.0 |
CVSS provenance
nvdv3.17.8HIGHCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
nvdv4.06.8MEDIUMCVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No public exploits indexed.
Wiz
CVE-2025-13743 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 8.7
CVE-2025-13743 [HIGH] CVE-2025-13743 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2025-13743 :
Docker Desktop vulnerability analysis and mitigation
Docker Desktop diagnostics bundles were found to include expired Hub PATs in log output due to error object serialization. This poses a risk of leaking sensitive information in exported diagnostics, especially when access denied errors occurred.
Source : NVD
## 2.4
Score
Published December 9, 2025
Severity LOW
CNA Score 2.4
Affected Technologies
Docker Desktop
Has Public Exploit No
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) 10.9
Exploitation Probability (EPSS) N/A
Affected packages and libraries
cpe:2.3:a:docker:docker_desktop
cpe:2.3:a:docker:desktop
Sources
Windows Severity HIGH Has Fix Added at: Dec 11, 2025
Windows Seve
Wiz
CVE-2025-14740 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 6.7
CVE-2025-14740 [MEDIUM] CVE-2025-14740 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2025-14740 :
Docker Desktop vulnerability analysis and mitigation
Docker Desktop for Windows contains multiple incorrect permission assignment vulnerabilities in the installer's handling of the C:\ProgramData\DockerDesktop directory. The installer creates this directory without proper ownership verification, creating two exploitation scenarios:
Scenario 1 (Persistent Attack):
If a low-privileged attacker pre-creates C:\ProgramData\DockerDesktop before Docker Desktop installation, the attacker retains ownership of the directory even after the installer applies restrictive ACLs. At any time after installation completes, the attacker can modify the directory ACL (as the owner) and tamper with critical configuration files such as install-settings.json to specify a malicious credentia
Wiz
CVE-2026-2664 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 8.7
CVE-2026-2664 [HIGH] CVE-2026-2664 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2026-2664 :
Docker Desktop vulnerability analysis and mitigation
An out of bounds read vulnerability in the grpcfuse kernel module present in the Linux VM in Docker Desktop for Windows, Linux and macOS up to version 4.61.0 could allow a local attacker to cause an unspecified impact by writing to /proc/docker entries. The issue has been fixed in Docker Desktop 4.62.0 .
Source : NVD
## 6.8
Score
Published February 24, 2026
Severity MEDIUM
CNA Score 6.8
Affected Technologies
Docker Desktop
Has Public Exploit No
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) 3.4
Exploitation Probability (EPSS) N/A
Affected packages and libraries
cpe:2.3:a:docker:desktop
Sources
Windows Severity HIGH Has Fix Added a
2026-02-24
Published