Docker 厂商漏洞列表 / CVE 中文分析 24

Docker 厂商相关 24 条 CVE 漏洞，含 AI 中文分析、POC、CVSS 评分与受影响产品。

Docker 是领先的容器化平台，核心用途为简化应用构建、分发与运行。其历史漏洞多涉及容器逃逸、权限提升及远程代码执行，常因配置不当或内核缺陷引发。近期收录的 24 条 CVE 显示其持续面临安全挑战。值得关注的是，Docker 通过集成安全扫描工具及支持镜像签名机制，强化供应链安全。尽管存在风险，其生态仍广泛依赖，用户需及时更新补丁以防范潜在威胁。

上位製品 Docker: Docker Desktop Docker Engine model-runner docker-credential-helpers cli buildx compose mcp-gateway Docker CLI

CVE ID	タイトル	CVSS	深刻度	公開日
CVE-2026-2664	Out of bounds read vulnerability in grpcfuse kernel module — Docker DesktopCWE-125	7.1^AI	High^AI	2026-02-24
CVE-2025-13743	Expired Personal Access Tokens (PATs) are recorded in Docker Desktop diagnostic logs — Docker DesktopCWE-532	7.5^AI	High^AI	2025-12-09
CVE-2025-9164	Multiple DLL Search Order Hijacking Vulnerabilities in Docker Desktop Installer for Windows — Docker DesktopCWE-427	7.8^AI	High^AI	2025-10-27
CVE-2025-10657	Docker Desktop with ECI Fails to Enforce Socket Command Restrictions — Docker DesktopCWE-269	7.2	-	2025-09-26
CVE-2025-9074	Docker Desktop allows unauthenticated access to Docker Engine API from containers — Docker DesktopCWE-668	8.1^AI	High^AI	2025-08-20
CVE-2025-6587	Exposure of system environment variables in Docker Desktop diagnostic logs — Docker DesktopCWE-532	6.5^AI	Medium^AI	2025-07-03
CVE-2025-3911	Exposure in Docker Desktop logs of environment variables configured for running containers — Docker DesktopCWE-532	5.5^AI	Medium^AI	2025-04-29
CVE-2025-4095	Registry Access Management (RAM) policies not applied when sign-in enforcement is configured via a configuration profile — Docker DesktopCWE-862	6.1^AI	Medium^AI	2025-04-29
CVE-2025-3224	Elevation of Privilege in Docker Desktop for Windows during Upgrade due to Insecure Directory Deletion — Docker DesktopCWE-269	7.8^AI	High^AI	2025-04-28
CVE-2025-1696	Exposure of Proxy Credentials in Docker Desktop Logs — Docker DesktopCWE-532	4.3	-	2025-03-06
CVE-2024-9348	Docker Desktop before v4.34.3 allows RCE via unsanitized GitHub source link in Build view — Docker DesktopCWE-20	9.8^AI	Critical^AI	2024-10-16
CVE-2024-8696	A remote code execution (RCE) vulnerability via crafted extension publisher-url/additional-urls could be abused by a malicious extension in Docker Desktop before 4.34.2. — Docker DesktopCWE-79	8.8^AI	High^AI	2024-09-12
CVE-2024-8695	A remote code execution (RCE) vulnerability via crafted extension description/changelog could be abused by a malicious extension in Docker Desktop before 4.34.2. — Docker DesktopCWE-79	9.8^AI	Critical^AI	2024-09-12
CVE-2023-1802	In Docker Desktop 4.17.x the Artifactory Integration falls back to sending registry credentials over plain HTTP if the HTTPS health check has failed — Docker DesktopCWE-319	5.9	Medium	2023-04-06

本页汇总了 Docker 厂商截至目前公开的全部 24 条 CVE 漏洞。每条漏洞均包含 CVSS 评分、CWE 弱点分类、受影响产品与参考链接，并附带 AI 生成的中文分析以便快速判断风险。

目標達成 すべての支援者に感謝 — 100%達成しました！

Docker 厂商漏洞列表 / CVE 中文分析 24

目標達成すべての支援者に感謝 — 100%達成しました！