What is CVE-2025-9074?

CVE-2025-9074 is a vulnerability in Docker Desktop, classified under Exposure of Resource to Wrong Sphere. Published 2025-08-20.

Is CVE-2025-9074 known to be exploited?

31 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in Docker Desktop

CVE-2025-9074

A vulnerability was identified in Docker Desktop that allows local running Linux containers to access the Docker Engine API via the configured Docker subnet, at 192.168.65.7:2375 by default. This vulnerability occurs with or without Enhanc…

EPSS: 0.012 (79.2th percentile) — read the EPSS interpretation.

Affected products

Docker Desktop — versions 4.25

Weakness classification (CWE)

CWE-668 — Exposure of Resource to Wrong Sphere

Public proof-of-concept exploits

BridgerAlderson/CVE-2025-9074-PoC
Shaoshi17/CVE-2025-9074-Docker-Exploit
zenzue/CVE-2025-9074
j3r1ch0123/CVE-2025-9074
xwpdx0/poc-2025-9074
PtechAmanja/CVE-2025-9074-Docker-Desktop-Container-Escape
fsoc-ghost-0x/CVE-2025-9074_DAEMON_KILLER
pppxo/CVE-2025-9074-PoC-Bash
KvzinNcpx7/CVE-2025-9074_DAEMON_KILLER
c0gnit00/CVE-2025-9074

References

docs.docker.com/desktop/release-notes/

Frequently asked questions

What is CVE-2025-9074?: CVE-2025-9074 is a vulnerability in Docker Desktop, classified under Exposure of Resource to Wrong Sphere. Published 2025-08-20.
Is CVE-2025-9074 known to be exploited?: 31 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.