All 2 CVE vulnerabilities found in model-runner, with AI-generated Chinese analysis, references, and POCs.
Vendor: docker
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-33990 | Docker Model Runner OCI Registry Client Vulnerable to Server-Side Request Forgery (SSRF) CWE-918 | 8.2AI | HighAI | 2026-04-01 |
| CVE-2026-28400 | Docker Model Runner Unauthenticated Runtime Flag Injection via _configure Endpoint CWE-749 | 7.6 | High | 2026-02-27 |
All 2 known CVE vulnerabilities affecting model-runner with full Chinese analysis, references, and POCs where available.