cbcvebase.
CVE-2026-41568
published 2026-06-12

CVE-2026-41568: Moby is an open source container framework. In Docker Engine prior to version 29.5.1, Docker Daemon versions 28.5.2 and prior, and Moby Daemon prior to version…

PriorityP429medium6.1CVSS 3.1
AVLACHPRLUIRSCCNILAH
EPSS
0.11%
1.5th percentile
Moby is an open source container framework. In Docker Engine prior to version 29.5.1, Docker Daemon versions 28.5.2 and prior, and Moby Daemon prior to version 2.0.0-beta.14, a race condition during docker cp mount setup allows a malicious container to create empty files or directories at arbitrary absolute paths on the host filesystem. This issue has been patched in Docker Engine version 29.5.1 and Moby Daemon version 2.0.0-beta.14.

Affected

316 ranges· showing 25
VendorProductVersion rangeFixed in
advanced-cluster-securityrhacs-scanner-rhel8
advanced-cluster-securityrhacs-scanner-slim-rhel8
ansible-automation-platform-24aap-must-gather-rhel8
ansible-automation-platform-25aap-must-gather-rhel8
ansible-automation-platform-26aap-must-gather-rhel9
ansible-automation-platform-27aap-must-gather-rhel9
ansible-automation-platform-27ansible-devspaces-rhel9
ansible-automation-platform-tech-previewansible-devspaces-rhel9
ansible-automation-platformplatform-operator-bundle
aquasecuritytrivy
assistedagent-preinstall-image-builder-rhel9
buildah_projectbuildah
container-native-virtualizationcnv-must-gather-rhel8
container-native-virtualizationcnv-must-gather-rhel9
container-native-virtualizationvirt-cdi-importer
container-native-virtualizationvirt-cdi-importer-rhel9
container-native-virtualizationvirt-cdi-uploadserver
container-native-virtualizationvirt-cdi-uploadserver-rhel9
container-tools_rhel8conmon
container-tools_rhel8skopeo
devspacestraefik-rhel9
devspacesudi-base-rhel10
devspacesudi-base-rhel9
devspacesudi-rhel9
dockerengine< 29.5.129.5.1

CVSS provenance

nvdv3.16.1MEDIUMCVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:N/I:L/A:H
vendor_redhat6.1MEDIUM
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.