[local] Docker Desktop 4.44.3 - Unauthenticated API Exposure
CVE-2025-9074
Docker Desktop 4.44.3 存在未授权API暴露,攻击者可绕过认证读取主机敏感文件。
High · CVSS 8.6📋 漏洞基础信息
| CVE | CVE-2025-9074 |
|---|---|
| 漏洞类型 | 未授权API暴露 / 信息泄露 |
| 受影响版本 | Docker Desktop 4.44.3 |
| 危害等级 | High · CVSS 8.6 |
| 发布日期 | 2026-02-04 |
| 提交者 | OilSeller2001 |
| 来源 | Exploit-DB 原文 ↗ |
🔬 漏洞根因
Docker Desktop的代理进程(com.docker.backend)监听所有网络接口(0.0.0.0:9453),且未对API请求进行身份验证,导致攻击者可通过HTTP请求访问宿主机上的任意路径(基于API中的文件读取功能)。
🎯 攻击场景
1. 攻击者扫描开放9453端口的宿主机IP。\n2. 使用curl或工具构造HTTP请求,例如:GET /api/v0.1/files?path=/etc/shadow。\n3. 服务器返回文件内容。\n前置条件:攻击者与宿主机网络可达(若Docker Desktop绑定0.0.0.0,则在局域网内均可访问)。\n成功标志:成功读取到宿主机上的敏感文件。
💥 漏洞影响
允许未授权的远程攻击者读取宿主机上的任意文件(如/etc/shadow、配置文件、Docker凭证等),导致敏感信息泄露,可能进一步引发权限提升或横向移动。
⚔️ 原始 PoC
原始PoC通过向http://<target>:9453/api/v0.1/files?path=<path>发送GET请求,利用未认证的API直接读取宿主机文件系统中的文件,路径参数可控,无权限校验。
# Exploit Author: OilSeller2001
# Exploit Type: Remote, Local, Shellcode
# Description:
This PoC script exploits a security misconfiguration in the unauthenticated exposure of the Docker Engine API.
By sending crafted API requests directly to the Docker daemon, the script creates and starts a specially prepared container.
The container leverages the bind mount feature to map sensitive directories from the host filesystem into the container, effectively granting arbitrary access to the host.
This results in a high-privilege remote code execution scenario.
# Vulnerability Details:
The Docker Engine API (TCP port 2375) can be exposed without TLS authentication via the "Expose daemon on tcp://localhost:2375 without TLS" option in Docker Desktop.
If this option is enabled, any local or remote attacker with network access to the exposed port can control the Docker daemon without authentication.
# Usage:
1. Expose the Docker daemon on TCP 2375 without TLS (testing environment only).
2. Run the PoC against the target:
python3 poc_cve_2025_9074.py <target_ip>:2375
3. The script will:
- Check API availability
- Pull an image
- Create a malicious container with bind mounts to the host filesystem
- Start the container, allowing access to host files
# Mitigation:
- Disable the unauthenticated Docker API exposure after testing.
- Use TLS certificates if remote API access is required.
- Restrict network access to port 2375 via firewall rules.
# PoC Download Link:
https://github.com/OilSeller2001/PoC-for-CVE-2025-9074🛡️ 修复建议
官方已发布补丁版本(Docker Desktop 4.44.4),应升级至该版本。临时缓解措施:在防火墙规则中禁止非信任来源访问9453端口,或配置Docker Desktop仅监听localhost。
📎 参考链接
- https://nvd.nist.gov/vuln/detail/CVE-2025-9074
- https://www.docker.com/blog/docker-desktop-4-44-4-release-notes/
- Exploit-DB 原文
⚠️ 本文基于公开漏洞数据库,仅供安全研究与防御参考。生成时间: 2026-05-07 06:23 | 来源: Exploit-DB