CVE-2026-34040

Published: Mar 31, 2026 Last Modified: Mar 31, 2026

ExploitDB:

Other exploit source:

Google Dorks:

HIGH 8,8

Source: [email protected]

Attack Vector: local

Attack Complexity: low

Privileges Required: low

User Interaction: none

Scope: changed

Confidentiality: high

Integrity: high

Availability: high

Description

AI Translation Available

Moby is an open source container framework. Prior to version 29.3.1, a security vulnerability has been detected that allows attackers to bypass authorization plugins (AuthZ). This issue has been patched in version 29.3.1.

288

Authentication Bypass Using an Alternate Path or Channel

Incomplete

Abstraction: Base Structure: Simple

Common Consequences

Security Scopes Affected:

Access Control

Potential Impacts:

Bypass Protection Mechanism

Applicable Platforms

Technologies: Not Technology-Specific, Web Based

View CWE Details

https://github.com/moby/moby/releases/tag/docker-v29.3.1

https://github.com/moby/moby/security/advisories/GHSA-x744-…

https://github.com/moby/moby/security/advisories/GHSA-x744-4wpc-v9h2

CVE-2026-34040

Description

Authentication Bypass Using an Alternate Path or Channel

Common Consequences

Applicable Platforms

Iscriviti alla newsletter