LeakyCreds
NewInstant webhook alerts now available — notified within seconds of any credential detection.Learn more →
Home / Vulnerability Intelligence / CVE-2026-34040

CVE-2026-34040 - Vulnerability Analysis

HighCVSS: 8.8

Last Updated: April 1, 2026

Moby - Authorization Bypass

Published: March 31, 2026Updated: April 1, 2026

Overview

Moby < 29.3.1 contains an authorization bypass caused by improper enforcement in authorization plugins, letting attackers bypass authorization, exploit requires no special conditions.

Severity & Score

Severity: High
CVSS Score: 8.8
EPSS Score: 1.4%(Probability of exploitation in next 30 days)

Impact

Attackers can bypass authorization, potentially gaining unauthorized access to restricted resources.

Mitigation

Update to version 29.3.1 or later.

References

Social Media Activity(1 post)

benzogaga33 :verified:
benzogaga33 :verified:
@benzogaga33
Apr 9, 2026

Docker : la faille CVE-2026-34040 permet d’obtenir un accès root sur l’hôte ! https://www.it-connect.fr/docker-la-faille-cve-2026-34040-permet-dobtenir-un-acces-root-sur-lhote/ #ActuCybersécurité #Cybersécurité #Vulnérabilité #Docker

View original post

Related Resources

Details

CVE ID
CVE-2026-34040
Severity
High
CVSS Score
8.8
Type
broken_access_control
Status
unconfirmed
EPSS
1.4%
Social Posts
1

CWE

  • CWE-288

CVSS Metrics

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

EPSS Score

1.4%Probability of exploitation in the next 30 days