Docker has patched a critical hole in Docker Desktop that let a container break out and take control of the host machine with laughable ease. The bug, tracked as CVE-2025-9074 and scoring 9.3 on the CVSS scale, left Docker’s internal Engine API wide open on “192.168.65.7:2375.” Any container could talk to it without authentication, which meant mounting drives and messing …
Read More »Docker Desktop bug let containers hop the fence with ease • The Register
