A critical vulnerability in Docker Desktop for Windows and macOS allows compromising the host by running a malicious container, even if the Enhanced Container Isolation (ECI) protection is active.

The security issue is a server-side request forgery (SSRF) now identified as CVE-2025-9074 , and it received a critical severity rating of 9.3.

“A malicious container running on Docker Desktop could access the Docker Engine and launch additional containers without requiring the Docker socket to be mounted,” reads Docker’s bulletin .

“This could allow unauthorized access to user files on the host system. Enhanced Container Isolation (ECI) does not mitigate this vulnerability.”

Security researcher and bug bounty hunter Felix Boulet found that the Docker Engine API could be reached with

See Full Page