The Hacker News
@thehackernews
�� Docker fixed a flaw letting attackers bypass AuthZ plugins with a padded API request (>1MB).
The plugin sees no body and allows it, while Docker executes it—creating a privileged container with host access and exposed credentials.
�� Learn how this leads to full host compromise → https://thehackernews.com/2026/04/docker-cve-2026-34040-lets-attackers.html
The plugin sees no body and allows it, while Docker executes it—creating a privileged container with host access and exposed credentials.
�� Learn how this leads to full host compromise → https://thehackernews.com/2026/04/docker-cve-2026-34040-lets-attackers.html
👍 2
🔥 2
20 3.4K
Обсуждение 0
Обсуждение не доступно в веб-версии. Чтобы написать комментарий, перейдите в приложение Telegram.
Обсудить в Telegram