Primary

Context

Docker Desktop grpcfuse Kernel Module Out of Bounds Read Vulnerability

Vulnerability

Patched

A vulnerability allowing out of bounds read has been identified in the grpcfuse kernel module of the Linux VM in Docker Desktop. This issue affects versions prior to 4.61.0 on Windows, Linux, and macOS. The vulnerability could enable a local attacker to cause an unspecified impact by writing to /proc/docker entries.

Impact

Exploitation of this vulnerability could lead to unintended memory access, potentially allowing a local attacker to manipulate or disrupt processes by writing to specific /proc/docker entries.

Remediation

Users can upgrade to Docker Desktop version 4.62.0 or later to address this vulnerability.

Added: Feb 24, 2026, 10:18 AM

Updated: Feb 24, 2026, 2:17 PM

Vulnerability Rating

Custom Algorithm

spread

6.6

impact

1.9

exploitability

2.9

remediation

7.7

relevance

3.1

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

6.6

impact

1.9

exploitability

2.9

remediation

7.7

relevance

3.1

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Docker Desktop grpcfuse Kernel Module Out of Bounds Read Vulnerability

Vulnerability

Impact

Remediation

Affected Products

Docker Desktop

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating