Threats Tagged 'cve-2026-12039'
View all threats tagged with 'cve-2026-12039'. Filter and sort to focus on specific types of threats.
Stop chasing alerts. Route them.
Start free, then upgrade once to turn Radar into an automated delivery engine for your security stack.
Custom feeds / Automations: email, Slack, webhooks, SIEM/MISP / API access (baseline limits)
API access activates after upgrading in Console -> Billing.
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.
Filter Threats
Narrow down the results by type, severity, or affected countries
Threats Tagged 'cve-2026-12039'
Click on any threat for detailed analysis and mitigation recommendations
CVE-2026-12039: CWE-923: Improper Restriction of Communication Channel to Intended Endpoints in Docker Docker SandboxesCVE-2026-12039 0 Docker Sandboxes (sbx) enforces an HTTP/S-only egress allowlist but does not apply it to DNS resolution: the per-network embedded DNS server forwards any queried name to the host resolver whenever the network is internet-connected, without consulting the policy. A workload inside a sandbox, which the threat model treats as untrusted, can therefore encode data into DNS labels for an attacker-controlled domain and exfiltrate it through a DNS covert channel, bypassing the configured allowlist. Join the discussion | CVE Database V5 | 06/18/2026, 13:48:14 UTC Added: 06/18/2026, 14:21:52 UTC |
Showing 1 to 1 of 1 result