Ethical Hacking News
Docker has released critical fixes to address a severe vulnerability (CVE-2025-9074) that affects its Docker Desktop application for Windows and macOS. The vulnerability allows an attacker to escape the confines of a container and potentially gain full access to the underlying host system. To protect your systems, it's essential to upgrade your Docker Desktop application as soon as possible.
Docker has released a critical security update to address CVE-2025-9074, which allows attackers to escape containers and gain full access to host systems. The vulnerability was discovered due to a simple oversight in Docker's internal HTTP API being reachable from any container without authentication or access controls. On Windows, an attacker can mount the entire file system as administrator, read sensitive files, and overwrite system DLLs to escalate privileges. On macOS, mounting a user directory prompts for permission, providing some protection against unauthorized access. The Linux version of Docker is not affected by this vulnerability, but an attacker can use SSRF flaws to exploit it. Users are strongly advised to upgrade to version 4.44.3 as soon as possible to ensure system safety.
Docker has released a critical security update to address a severe vulnerability (CVE-2025-9074) that affects its Docker Desktop application for Windows and macOS. The vulnerability, which carries a high CVSS score of 9.3 out of 10.0, allows an attacker to escape the confines of a container and potentially gain full access to the underlying host system.
The vulnerability was discovered by security researcher Felix Boulet, who revealed that it is due to a simple oversight on Docker's part. The internal HTTP API was reachable from any container without authentication or access controls, making it possible for an attacker to exploit this flaw. PVOTAL Technologies researcher Philippe Dugre ("zer0x64") further examined the flaw and found that an attacker can exploit it on Windows versions of Docker Desktop to mount as an administrator the entire file system, read any sensitive file, and overwrite a system DLL to escalate their privileges to administrator level.
On macOS, however, the situation is slightly different. While the Docker Desktop application still has some layers of isolation, trying to mount a user directory prompts the user for permission, which provides a layer of protection against unauthorized access. Nevertheless, an attacker can still exploit the vulnerability by mounting and modifying the application's configuration, which does not require any user approval.
The Linux version of Docker is not affected by this vulnerability, as it uses a named pipe on the host's file system instead of relying on a TCP socket for the Docker Engine's API. However, it's worth noting that even in this case, an attacker can use a server-side request forgery (SSRF) flaw to reach the Docker socket and potentially exploit the vulnerability.
Docker has released fixes to address this critical security flaw in version 4.44.3. It is highly recommended that users upgrade their Docker Desktop application as soon as possible to ensure the safety of their systems.
This vulnerability serves as a stark reminder of the importance of up-to-date security software and regular updates. As with any new technology, it's essential to stay informed about known vulnerabilities and take proactive measures to protect yourself against potential threats.
In recent years, Docker has made significant strides in improving container security. However, this latest vulnerability highlights the need for continued vigilance and cooperation between developers, security researchers, and users to ensure the integrity of our digital infrastructure.
By staying ahead of emerging threats like this one, we can work together to create a safer online environment for everyone.
Related Information:
https://www.ethicalhackingnews.com/articles/Docker-Container-Escape-Vulnerability-A-Critical-Security-Threat-to-Windows-macOS-and-Linux-Systems-ehn.shtml
https://thehackernews.com/2025/08/docker-fixes-cve-2025-9074-critical.html
https://nvd.nist.gov/vuln/detail/CVE-2025-9074
https://www.cvedetails.com/cve/CVE-2025-9074/
Published: Mon Aug 25 15:29:47 2025 by llama3.2 3B Q4_K_M
