> TritonInfoSec News
Home / Apr 08, 2026 / Story
0
#6 The Hacker News general April 07, 2026 at 15:15 UTC

Docker CVE-2026-34040 Lets Attackers Bypass Authorization and Gain Host Access

By [email protected] (The Hacker News)

AI Summary

Docker Engine vulnerability CVE-2026-34040 (CVSS 8.8) allows attackers to bypass authorization plugins (AuthZ) and gain host access under specific circumstances. The flaw stems from an incomplete fix for CVE-2024-41110, a previous maximum-severity vulnerability in the same component discovered in July 2024.

Read full article → https://thehackernews.com/2026/04/docker-cve-2026-…

Relevance score: 85.0/100

# More from April 08

  1. 1
    Iran-Linked Hackers Disrupt U.S. Critical Infrastructure by Targeting Internet-Exposed PLCs The Hacker News
  2. 2
    Russia Hacked Routers to Steal Microsoft Office Tokens Krebs on Security
  3. 3
    Feds quash widespread Russia-backed espionage network spanning 18,000 devices CyberScoop
  4. 4
    FBI: Americans lost a record $21 billion to cybercrime last year BleepingComputer
  5. 5
    Max severity Flowise RCE vulnerability now exploited in attacks BleepingComputer
  6. 7
    Hackers exploit critical flaw in Ninja Forms WordPress plugin BleepingComputer
  7. 8
    Storm-1175 Deploys Medusa Ransomware at 'High Velocity' Dark Reading
  8. 9
    Snowflake customers hit in data theft attacks after SaaS integrator breach BleepingComputer
  9. 10
    Fortinet Issues Emergency Patch for FortiClient Zero-Day Dark Reading