Product

Docker (<= 28.5.2)

1 brief RSS

Docker `PUT /containers/{id}/archive` Vulnerability Allows Host Root Code Execution

A vulnerability exists in Docker where a malicious container image can execute arbitrary code with host root privileges by exploiting the decompression of compressed archives uploaded via the `PUT /containers/{id}/archive` endpoint, tracked as CVE-2026-41567.

Docker +2 container rce privilege-escalation CVE-2026-41567

2r 1t 2d ago