NewsSecurity Vulnerabilities

Docker Desktop for Mac Docker Model Runner Exposed Dangerous Function Denial-of-Service Vulnerability (CVE-2026-28400)

CVE number = CVE-2026-28400

This vulnerability allows local attackers to create a denial-of-service condition on affected installations of Docker Desktop.

An attacker must first obtain the ability to execute low-privileged code on the target guest system in order to exploit this vulnerability.

The specific flaw exists within Docker Model Runner.

The issue results from the exposure of a dangerous function.

An attacker can leverage this vulnerability to create a denial-of-service condition on the system.

Docker has issued an update to correct this vulnerability.

More details can be found at:
https://github.com/docker/model-runner/security/advisories/GHSA-m456-c56c-hh5c#advisory-comment-165261

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.