Vulnerabilities4 min read
Docker Auth Bypass Gives Attackers Full Host Access
CVE-2026-34040 lets attackers bypass Docker authorization plugins with a single padded HTTP request. CVSS 8.8 flaw patched in Engine 29.3.1.
Marcus ChenApr 8, 2026
Docker
3 articles tagged with "Docker"
Malware4 min read
TeamPCP Worm Turns Cloud Misconfigs Into Cybercrime Platform
Cloud-native worm campaign by TeamPCP has compromised 60,000+ servers by exploiting Docker APIs, Kubernetes, and React2Shell. Flare researchers detail the industrialized operation.
James RiveraFeb 18, 2026
Vulnerabilities4 min read
Coolify Command Injection Flaws Grant Root Access
Five critical vulnerabilities in the self-hosting platform allow authenticated users to execute arbitrary commands as root. Over 52,000 instances are exposed globally.
Marcus ChenJan 10, 2026