CVE-2026-33990 | docker model-runner up to 1.1.24 server-side request forgery

Inserito da Angelo Barbosa | Apr 1, 2026 | CVE

A vulnerability described as critical has been identified in docker model-runner up to 1.1.24. This affects an unknown part. Executing a manipulation can lead to server-side request forgery.

This vulnerability is registered as CVE-2026-33990. The attack needs to be launched locally. No exploit is available.

Upgrading the affected component is recommended.

CVE-2026-33990 | docker model-runner up to 1.1.24 server-side request forgery

Post correlati

CVE-2021-47905 | vintagedaddyo MyBB Delete Account Plugin 1.4 Admin Interface cross site scripting (Exploit 49500 / EDB-49500)

CVE-2024-27954 | WP Automatic Automatic Plugin up to 3.92.0 on WordPress path traversal

CVE-2023-7089 | Easy SVG Allow Plugin up to 1.0 on WordPress cross site scripting

CVE-2024-50399 | QNAP QTS/QuTS hero format string (qsa-24-43)