CVE-2026-2664 Docker — Exploit & Vulnerability Details MEDIUM

CVE-2026-2664

MEDIUM CVSS 4.0: 6.8 EPSS 0.02%

Parameter	Value
CVSS	6.8 (MEDIUM)
Type	CWE-125 (Out-of-bounds Read)
Vendor	Docker
Public PoC	No

An out of bounds read vulnerability in the grpcfuse kernel module present in the Linux VM in Docker Desktop for Windows, Linux and macOS up to version 4.61.0 could allow a local attacker to cause an unspecified impact by writing to /proc/docker entries. The issue has been fixed in Docker Desktop 4.62.0 .

Attack Parameters

Attack Vector

Local

Requires local access

Attack Complexity

Low

Easy to exploit

Attack Requirements

None

No additional conditions

Privileges Required

Low

Basic privileges needed

User Interaction

None

No user interaction needed

Impact Assessment

Confidentiality

High

Complete data leak

Integrity

None

No data modification

Availability

None

No disruption

CVSS Vector v4.0

Weakness Type (CWE)

CWE-125 Out-of-bounds Read

References 1

https://docs.docker.com/desktop/release-notes/#4620

security@docker.com

Share Post Share Share Share

Related Vulnerabilities

CVE-2026-33990

Docker

6.8

CVE-2026-34450

Docker

4.8

CVE-2026-33997

Mobyproject

8.1

CVE-2026-2287

Docker

9.8

CVE-2026-2275

Docker

9.6

Menu

CVE-2026-2664

Attack Parameters

Impact Assessment

CVSS Vector v4.0

Weakness Type (CWE)

References 1

Related Vulnerabilities

CVE-2026-33990

CVE-2026-34450

CVE-2026-33997

CVE-2026-2287

CVE-2026-2275

CVE Details

Editor's Choice

Menu

CVE-2026-2664

Attack Parameters

Impact Assessment

CVSS Vector v4.0

Weakness Type (CWE)

References 1

Related Vulnerabilities

CVE-2026-33990

CVE-2026-34450

CVE-2026-33997

CVE-2026-2287

CVE-2026-2275

CVE Details

Editor's Choice

Stay informed on cybersecurity