Docker Desktop 针对 Windows 和 macOS 版本的一个高危漏洞（CVE-2025-9074）已被修复。该漏洞允许恶意容器逃逸隔离环境，获取宿主计算机的管理员权限。这款广受开发者欢迎的应用程序被发现存在安全缺陷，攻击者可借此突破隔离容器限制，完全控制计算机系统。

Docker公司修复了Windows和macOS版Docker Desktop应用程序中的一个高危漏洞（CVE-2025-9074，CVSS评分9.3），攻击者可能利用该漏洞突破容器隔离限制。 漏洞技术细节 根据Docker官方文档披露，恶意容器能够访问Docker引擎并在无需套接字的情况下启动新容器，即使启用了增强 ...

A critical vulnerability in Docker Desktop for Windows and macOS allows compromising the host by running a malicious container, even if the Enhanced Container Isolation (ECI) protection is active. The ...

Docker is a platform that allows users to build, share and run modern applications. This tool can package software into standardized units called Containers. These containers have everything required ...

The Windows installer for Docker Desktop can be tricked into accepting incorrect DLLs. The developers are countering this with an updated software version. The vulnerability narrowly misses ...