{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-24740", "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "state": "PUBLISHED", "assignerShortName": "GitHub_M", "dateReserved": "2026-01-26T19:06:16.059Z", "datePublished": "2026-01-27T20:59:05.656Z", "dateUpdated": "2026-01-28T21:16:44.096Z"}, "containers": {"cna": {"title": "Dozzle Agent Label-Based Access Control Bypass Allows Unauthorized Container Shell Access", "problemTypes": [{"descriptions": [{"cweId": "CWE-284", "lang": "en", "description": "CWE-284: Improper Access Control", "type": "CWE"}]}, {"descriptions": [{"cweId": "CWE-863", "lang": "en", "description": "CWE-863: Incorrect Authorization", "type": "CWE"}]}], "metrics": [{"cvssV4_0": {"attackVector": "NETWORK", "attackComplexity": "LOW", "attackRequirements": "NONE", "privilegesRequired": "LOW", "userInteraction": "NONE", "vulnConfidentialityImpact": "HIGH", "vulnIntegrityImpact": "HIGH", "vulnAvailabilityImpact": "LOW", "subConfidentialityImpact": "NONE", "subIntegrityImpact": "NONE", "subAvailabilityImpact": "NONE", "baseScore": 8.7, "baseSeverity": "HIGH", "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:L/SC:N/SI:N/SA:N", "version": "4.0"}}], "references": [{"name": "https://github.com/amir20/dozzle/security/advisories/GHSA-m855-r557-5rc5", "tags": ["x_refsource_CONFIRM"], "url": "https://github.com/amir20/dozzle/security/advisories/GHSA-m855-r557-5rc5"}, {"name": "https://github.com/amir20/dozzle/commit/620e59aa246347ba8a27e68c532853b8a5137bc1", "tags": ["x_refsource_MISC"], "url": "https://github.com/amir20/dozzle/commit/620e59aa246347ba8a27e68c532853b8a5137bc1"}, {"name": "https://github.com/amir20/dozzle/releases/tag/v9.0.3", "tags": ["x_refsource_MISC"], "url": "https://github.com/amir20/dozzle/releases/tag/v9.0.3"}], "affected": [{"vendor": "amir20", "product": "dozzle", "versions": [{"version": "< 9.0.3", "status": "affected"}]}], "providerMetadata": {"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "shortName": "GitHub_M", "dateUpdated": "2026-01-27T20:59:05.656Z"}, "descriptions": [{"lang": "en", "value": "Dozzle is a realtime log viewer for docker containers. Prior to version 9.0.3, a flaw in Dozzle\u2019s agent-backed shell endpoints allows a user restricted by label filters (for example, `label=env=dev`) to obtain an interactive root shell in out\u2011of\u2011scope containers (for example, `env=prod`) on the same agent host by directly targeting their container IDs. Version 9.0.3 contains a patch for the issue."}], "source": {"advisory": "GHSA-m855-r557-5rc5", "discovery": "UNKNOWN"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-01-28T21:16:31.777466Z", "id": "CVE-2026-24740", "options": [{"Exploitation": "poc"}, {"Automatable": "yes"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-01-28T21:16:44.096Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2026-24740", "role": "CISA Coordinator", "options": [{"Exploitation": "poc"}, {"Automatable": "yes"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2026-01-28T21:16:31.777466Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-01-28T21:16:39.221Z"}}], "cna": {"title": "Dozzle Agent Label-Based Access Control Bypass Allows Unauthorized Container Shell Access", "source": {"advisory": "GHSA-m855-r557-5rc5", "discovery": "UNKNOWN"}, "metrics": [{"cvssV4_0": {"version": "4.0", "baseScore": 8.7, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:L/SC:N/SI:N/SA:N", "userInteraction": "NONE", "attackComplexity": "LOW", "attackRequirements": "NONE", "privilegesRequired": "LOW", "subIntegrityImpact": "NONE", "vulnIntegrityImpact": "HIGH", "subAvailabilityImpact": "NONE", "vulnAvailabilityImpact": "LOW", "subConfidentialityImpact": "NONE", "vulnConfidentialityImpact": "HIGH"}}], "affected": [{"vendor": "amir20", "product": "dozzle", "versions": [{"status": "affected", "version": "< 9.0.3"}]}], "references": [{"url": "https://github.com/amir20/dozzle/security/advisories/GHSA-m855-r557-5rc5", "name": "https://github.com/amir20/dozzle/security/advisories/GHSA-m855-r557-5rc5", "tags": ["x_refsource_CONFIRM"]}, {"url": "https://github.com/amir20/dozzle/commit/620e59aa246347ba8a27e68c532853b8a5137bc1", "name": "https://github.com/amir20/dozzle/commit/620e59aa246347ba8a27e68c532853b8a5137bc1", "tags": ["x_refsource_MISC"]}, {"url": "https://github.com/amir20/dozzle/releases/tag/v9.0.3", "name": "https://github.com/amir20/dozzle/releases/tag/v9.0.3", "tags": ["x_refsource_MISC"]}], "descriptions": [{"lang": "en", "value": "Dozzle is a realtime log viewer for docker containers. Prior to version 9.0.3, a flaw in Dozzle\u2019s agent-backed shell endpoints allows a user restricted by label filters (for example, `label=env=dev`) to obtain an interactive root shell in out\u2011of\u2011scope containers (for example, `env=prod`) on the same agent host by directly targeting their container IDs. Version 9.0.3 contains a patch for the issue."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-284", "description": "CWE-284: Improper Access Control"}]}, {"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-863", "description": "CWE-863: Incorrect Authorization"}]}], "providerMetadata": {"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "shortName": "GitHub_M", "dateUpdated": "2026-01-27T20:59:05.656Z"}}}, "cveMetadata": {"cveId": "CVE-2026-24740", "state": "PUBLISHED", "dateUpdated": "2026-01-28T21:16:44.096Z", "dateReserved": "2026-01-26T19:06:16.059Z", "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "datePublished": "2026-01-27T20:59:05.656Z", "assignerShortName": "GitHub_M"}, "dataVersion": "5.2"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:amirraminfar:dozzle:*:*:*:*:*:docker:*:*", "matchCriteriaId": "A95FD36E-EB83-4D34-9E97-94EA954B4AAF", "versionEndExcluding": "9.0.3", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Dozzle is a realtime log viewer for docker containers. Prior to version 9.0.3, a flaw in Dozzle\u2019s agent-backed shell endpoints allows a user restricted by label filters (for example, `label=env=dev`) to obtain an interactive root shell in out\u2011of\u2011scope containers (for example, `env=prod`) on the same agent host by directly targeting their container IDs. Version 9.0.3 contains a patch for the issue."}], "id": "CVE-2026-24740", "lastModified": "2026-02-19T21:30:24.780", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "LOW", "baseScore": 9.9, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:L", "version": "3.1"}, "exploitabilityScore": 3.1, "impactScore": 6.0, "source": "nvd@nist.gov", "type": "Primary"}], "cvssMetricV40": [{"cvssData": {"Automatable": "NOT_DEFINED", "Recovery": "NOT_DEFINED", "Safety": "NOT_DEFINED", "attackComplexity": "LOW", "attackRequirements": "NONE", "attackVector": "NETWORK", "availabilityRequirement": "NOT_DEFINED", "baseScore": 8.7, "baseSeverity": "HIGH", "confidentialityRequirement": "NOT_DEFINED", "exploitMaturity": "NOT_DEFINED", "integrityRequirement": "NOT_DEFINED", "modifiedAttackComplexity": "NOT_DEFINED", "modifiedAttackRequirements": "NOT_DEFINED", "modifiedAttackVector": "NOT_DEFINED", "modifiedPrivilegesRequired": "NOT_DEFINED", "modifiedSubAvailabilityImpact": "NOT_DEFINED", "modifiedSubConfidentialityImpact": "NOT_DEFINED", "modifiedSubIntegrityImpact": "NOT_DEFINED", "modifiedUserInteraction": "NOT_DEFINED", "modifiedVulnAvailabilityImpact": "NOT_DEFINED", "modifiedVulnConfidentialityImpact": "NOT_DEFINED", "modifiedVulnIntegrityImpact": "NOT_DEFINED", "privilegesRequired": "LOW", "providerUrgency": "NOT_DEFINED", "subAvailabilityImpact": "NONE", "subConfidentialityImpact": "NONE", "subIntegrityImpact": "NONE", "userInteraction": "NONE", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X", "version": "4.0", "vulnAvailabilityImpact": "LOW", "vulnConfidentialityImpact": "HIGH", "vulnIntegrityImpact": "HIGH", "vulnerabilityResponseEffort": "NOT_DEFINED"}, "source": "security-advisories@github.com", "type": "Secondary"}]}, "published": "2026-01-27T21:16:03.277", "references": [{"source": "security-advisories@github.com", "tags": ["Patch"], "url": "https://github.com/amir20/dozzle/commit/620e59aa246347ba8a27e68c532853b8a5137bc1"}, {"source": "security-advisories@github.com", "tags": ["Product", "Release Notes"], "url": "https://github.com/amir20/dozzle/releases/tag/v9.0.3"}, {"source": "security-advisories@github.com", "tags": ["Exploit", "Mitigation", "Vendor Advisory"], "url": "https://github.com/amir20/dozzle/security/advisories/GHSA-m855-r557-5rc5"}], "sourceIdentifier": "security-advisories@github.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-284"}, {"lang": "en", "value": "CWE-863"}], "source": "security-advisories@github.com", "type": "Primary"}, {"description": [{"lang": "en", "value": "CWE-863"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{}

{"analysis": {"en": {"generated_at": "2026-04-18T01:56:07.117831+00:00", "value": {"mitigation_remediation": ["Upgrade to Dozzle 9.0.3 or later to receive the fix that removes the ability to target out\u2011of\u2011scope containers through the shell endpoint.", "Restrict exposure of the Dozzle agent endpoints to trusted networks or users only. Implement network segmentation, firewalls, or reverse proxy rules that limit who can send shell requests.", "Disable or remove the agent\u2011backed shell functionality if it is not required for your monitoring workflow. This can be done by configuring Dozzle to run without the shell plugin or by using the official DOZZLE_DISABLE_SHELL environment variable."], "summary": {"action": "Patch Immediately", "impact": "Unauthorized root shell in containers via label filter bypass"}, "threat_synthesis": {"affected_systems": "The vulnerability affects the Dozzle log viewer for Docker containers provided by amir20. Any deployment of Dozzle before version 9.0.3 is susceptible. The issue is present in the agent component that processes shell commands, regardless of the Docker host or the number of containers. The patch was supplied in release 9.0.3.", "description_and_impact": "A flaw in Dozzle\u2019s agent\u2011backed shell endpoints allows an attacker who is already granted access to the Dozzle interface but restricted by label filters (for example, label=env=dev) to directly target the container IDs of out\u2011of\u2011scope containers (for example, env=prod). By sending shell requests for those containers, the attacker obtains an interactive root shell on the agent host, bypassing intended access controls. This demonstrates an Access Control weakness and a missing authorization flaw, as catalogued by CWE\u2011284 and CWE\u2011863.", "risk_and_exploitability": "The CVSS score of 8.7 reflects a high\u2011severity flaw. The EPSS score is less than 1%, indicating a low probability of public exploitation at present, and the vulnerability is not listed in the CISA KEV catalog. Nevertheless, an attacker with even minimal access to the Dozzle web interface can exploit the bug by using direct container IDs, which requires no special privileges beyond those granted by the label filter. If the attacker gains access to the agent host, the impact is full root control over the host and any containers running on it."}}}}, "created": "2026-01-28T12:21:59.248712+00:00", "updated": "2026-04-18T02:00:10.470785+00:00", "vendors": ["amir20", "amir20$PRODUCT$dozzle"]}