Docker Docker_desktop
3 CVEs affecting Docker Docker_desktop. Latest disclosed: 2026-05-22. Critical: 0, High: 3.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2026-6406 | High | 8.8 | 2026-05-22 | The Docker CLI --use-api-socket flag bypasses Enhanced Container Isolation (ECI) restrictions in Docker Desktop. When ECI is enabled, Docker socket mounts from… |
CVE-2026-5843 | High | 8.2 | 2026-05-22 | The MLX inference backend in Docker Model Runner on macOS uses the MLX-LM library, which unconditionally imports and executes arbitrary Python files from model… |
CVE-2026-5817 | High | 8.2 | 2026-05-22 | The vllm-metal inference backend in Docker Model Runner on macOS unconditionally sets trust_remote_code=True when loading model tokenizers, and runs without sa… |