Github.com/docker/docker

This hub aggregates every CVE we track for Github.com/docker/docker, a product in the oss libraries space. Use it to gauge the current risk picture and drill into individual advisories.

Severity distribution

Monthly trend

The 15 most recently published vulnerabilities affecting Github.com/docker/docker.

• CVE-2025-54410Moby's Firewalld reload removes bridge network isolation3.3Jul 30, 2025
• CVE-2025-54388Moby's Firewalld reload makes published container ports accessible from remote hosts4.6Jul 30, 2025
• CVE-2024-41110Moby authz zero length regression9.9Jul 24, 2024
• CVE-2024-32473Moby IPv6 enabled on IPv4-only network interfaces4.7Apr 18, 2024
• CVE-2024-29018External DNS requests from 'internal' networks could lead to data exfiltration5.9Mar 20, 2024
• CVE-2024-24557Moby classic builder cache poisoning6.9Feb 1, 2024
• CVE-2023-28840moby/moby's dockerd daemon encrypted overlay network may be unauthenticated7.5Apr 4, 2023
• CVE-2023-28841moby/moby's dockerd daemon encrypted overlay network traffic may be unencrypted6.8Apr 4, 2023
• CVE-2023-28842moby/moby's dockerd daemon encrypted overlay network with a single endpoint is unauthenticated6.8Apr 4, 2023
• CVE-2022-36109Moby vulnerability relating to supplementary group permissions5.3Sep 9, 2022
• CVE-2022-24769Default inheritable capabilities for linux container should be empty5.9Mar 24, 2022
• CVE-2021-41089`docker cp` allows unexpected chmod of host files2.8Oct 4, 2021
• CVE-2021-41091Insufficiently restricted permissions on data directory in Docker Engine6.3Oct 4, 2021
• CVE-2020-27534util/binfmt_misc/check.go in Builder in Docker Engine before 19.03.9 calls os.OpenFile with a potentially unsafe qemu-check temporary pathname, constructed with an empty first argument in an ioutil...5.3Dec 30, 2020
• CVE-2014-9356Path traversal vulnerability in Docker before 1.3.3 allows remote attackers to write to arbitrary files and bypass a container protection mechanism via a full pathname in a symlink in an (1) image ...8.6Dec 2, 2019