Package impact

Go / github.com/docker/docker

critical high medium low unknown

0

KEV Has exploit

CVE	Severity	CVSS	Risk	Published	Description	Impact
CVE-2014-9357	critical	—	10.0	12y ago	Arbitrary Code Execution in github.com/docker/docker
CVE-2026-42306	high	—	8.0	10d ago	Docker: Race condition in docker cp allows bind mount redirection to host path
CVE-2026-41567	high	—	8.0	10d ago	Docker: `PUT /containers/{id}/archive` executes container binary on the host
CVE-2026-34040	high	—	8.0	2mo ago	Moby has AuthZ plugin bypass when provided oversized request bodies
CVE-2015-3629	high	7.8	7.8	11y ago	Arbitrary File Write in Libcontainer in github.com/docker/docker
CVE-2014-6407	high	—	7.5	12y ago	Arbitrary Code Execution in Docker in github.com/docker/docker
CVE-2015-3630	high	—	7.2	11y ago	Information Exposure in Docker Engine in github.com/docker/docker
CVE-2015-3627	high	—	7.2	11y ago	Symlink Attack in Libcontainer and Docker Engine in github.com/docker/docker
CVE-2014-3499	high	—	7.2	12y ago	Privilege Escalation in Docker in github.com/docker/docker
CVE-2014-9358	medium	—	6.4	12y ago	Directory Traversal in Docker in github.com/docker/docker
CVE-2026-41568	medium	—	5.5	10d ago	Docker: Race condition in docker cp allows creation of arbitrary empty files on the host via symlink swap
CVE-2021-41089	medium	—	5.5	2y ago	Unexpected chmod of host files via 'docker cp' in Moby Docker Engine in github.com/docker/docker
CVE-2021-41091	medium	—	5.5	2y ago	Moby (Docker Engine) Insufficiently restricted permissions on data directory in github.com/docker/docker
CVE-2014-6408	medium	—	5.0	12y ago	Access Restriction Bypass in Docker in github.com/docker/docker
CVE-2014-5277	medium	—	5.0	12y ago	Docker before 1.3.1 and docker-py before 0.5.3 fall back to HTTP when the HTTPS connection to the registry fails, which allows man-in-the-middle attackers to conduct downgrade attacks and obtain auth…