Lucene search
+L

Docker Desktop < 4.67.0 SSRF (CVE-2026-33990)

🗓️ 02 Apr 2026 00:00:00Reported by TenableType 
nessus
 nessus
🔗 www.tenable.com👁 12 Views

Docker Desktop prior to 4.67.0 has SSRF in Model Runner OCI registry token exchange, enabling internal requests.

Related
Refs
Code
ReporterTitlePublishedViews
Family
attackerkb
CVE-2026-33990
1 Apr 202616:17
attackerkb
circl
CVE-2026-33990
29 Mar 202617:00
circl
cnnvd
Docker Model Runner 代码问题漏洞
1 Apr 202600:00
cnnvd
cve
CVE-2026-33990
1 Apr 202616:17
cve
cvelist
CVE-2026-33990 Docker Model Runner OCI Registry Client Vulnerable to Server-Side Request Forgery (SSRF)
1 Apr 202616:17
cvelist
nessus
Docker Desktop < 4.67.0 SSRF
2 Apr 202600:00
nessus
nessus
Linux Distros Unpatched Vulnerability : CVE-2026-33990
3 Apr 202600:00
nessus
euvd
EUVD-2026-17963
1 Apr 202616:17
euvd
github
Docker Model Runner OCI Registry Client Vulnerable to Server-Side Request Forgery (SSRF)
30 Mar 202617:08
github
nvd
CVE-2026-33990
1 Apr 202617:28
nvd
Rows per page
#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
##

include('compat.inc');

if (description)
{
  script_id(304670);
  script_version("1.4");
  script_set_attribute(attribute:"plugin_modification_date", value:"2026/05/08");

  script_cve_id("CVE-2026-33990");
  script_xref(name:"IAVA", value:"2026-A-0284-S");

  script_name(english:"Docker Desktop < 4.67.0 SSRF (CVE-2026-33990)");

  script_set_attribute(attribute:"synopsis", value:
"The remote host has an application installed that is affected by a server-side request forgery vulnerability.");
  script_set_attribute(attribute:"description", value:
"The version of Docker Desktop installed on the remote host is prior to 4.67.0. It is, therefore, affected by a
server-side request forgery (SSRF) vulnerability:

  - Docker Model Runner contains an SSRF vulnerability in its OCI registry token exchange flow. When pulling a model,
    Model Runner follows the realm URL from the registry's WWW-Authenticate header without validating the scheme,
    hostname, or IP range. A malicious OCI registry can set the realm to an internal URL, causing Model Runner running
    on the host to make arbitrary GET requests to internal services and reflect the full response body back to the
    caller. (CVE-2026-33990)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version
number.");
  # https://github.com/docker/model-runner/security/advisories/GHSA-x2f5-332j-9xwq
  script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?ca9ae58f");
  script_set_attribute(attribute:"see_also", value:"https://docs.docker.com/desktop/release-notes/#4670");
  script_set_attribute(attribute:"solution", value:
"Upgrade to Docker Desktop version 4.67.0 or later.");
  script_set_attribute(attribute:"agent", value:"all");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:N");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
  script_set_attribute(attribute:"cvss4_vector", value:"CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:L/SI:N/SA:N");
  script_set_attribute(attribute:"cvss4_threat_vector", value:"CVSS:4.0/E:U");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2026-33990");

  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"vuln_publication_date", value:"2026/03/30");
  script_set_attribute(attribute:"patch_publication_date", value:"2026/03/30");
  script_set_attribute(attribute:"plugin_publication_date", value:"2026/04/02");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:docker:docker");
  script_set_attribute(attribute:"stig_severity", value:"I");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Misc.");

  script_copyright(english:"This script is Copyright (C) 2026 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("docker_for_linux_installed.nbin", "docker_for_mac_installed.nbin", "docker_for_windows_installed.nbin");
  script_require_ports("installed_sw/Docker Desktop", "installed_sw/Docker", "installed_sw/Docker for Windows");

  exit(0);
}

include('vdf.inc');

# @tvdl-content
var vuln_data = {
  'metadata': {'spec_version': '1.0'},
  'checks': [
    {
      'product': {'name': 'Docker for Windows', 'type': 'app'},
      'check_algorithm': 'default',
      'requires': [
        {'scope': 'target', 'match': {'os': 'windows'}}
      ],
      'constraints': [{'fixed_version': '4.67.0'}]
    },
    {
      'product': {'name': 'Docker', 'type': 'app'},
      'check_algorithm': 'default',
      'requires': [
        {'scope': 'target', 'match': {'os': 'macos'}}
      ],
      'constraints': [{'fixed_version': '4.67.0'}]
    },
    {
      'product': {'name': 'Docker Desktop', 'type': 'app'},
      'check_algorithm': 'default',
      'requires': [
        {'scope': 'target', 'match': {'os': 'linux'}}
      ],
      'constraints': [{'fixed_version': '4.67.0'}]
    }
  ]
};

var result = vdf::check_and_report(vuln_data:vuln_data, severity:SECURITY_WARNING);
vdf::handle_check_and_report_errors(vdf_result:result);

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

08 May 2026 00:00Current
6Medium risk
Vulners AI Score6
CVSS 46.8
CVSS 3.19.1
EPSS0.00253
SSVC
12