Known Vulnerabilities for Compose by Docker
Listed below are 10 of the newest known vulnerabilities associated with "Compose" by "Docker".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-59726 json | Ruflo is an agent meta-harness for Claude Code and Codex. Prior to 3.16.3, ruflo's default docker-compose deployment exposed ... | Not Provided | 2026-07-09 | 2026-07-09 |
| CVE-2026-58455 json | Dockwatch through 0.6.567 contains an unauthenticated OS command injection vulnerability that allows remote attackers to exec... | Not Provided | 2026-07-02 | 2026-07-06 |
| CVE-2026-58451 json | Horde IMP before 7.0.1 contains a path traversal vulnerability in lib/Compose.php that allows authenticated attackers to read... | Not Provided | 2026-07-01 | 2026-07-02 |
| CVE-2026-55605 json | DeepSeek MCP Server is an MCP server for DeepSeek V4. Starting in version 1.4.2 and prior to version 1.8.0, the self-hosted H... | Not Provided | 2026-07-09 | 2026-07-10 |
| CVE-2026-55454 json | Appsmith is a platform to build admin panels, internal tools, and dashboards. Prior to 2.1, the bundled Caddy reverse-proxy's... | Not Provided | 2026-06-24 | 2026-06-25 |
| CVE-2026-55223 json | c3p0 is a JDBC Connection pooling library. In versions prior to 0.14.0, c3p0 in combination with other libraries, can compos... | Not Provided | 2026-06-30 | 2026-07-01 |
| CVE-2026-53576 json | Kestra is an open-source, event-driven orchestration platform. Prior to 1.0.45 and 1.3.21, the authentication filter for the ... | Not Provided | 2026-06-26 | 2026-06-29 |
| CVE-2026-47179 json | Arcane is an interface for managing Docker containers, images, networks, and volumes. Prior to 1.19.4, ProjectService.GetProj... | Not Provided | 2026-05-29 | 2026-05-29 |
| CVE-2026-47125 json | Arcane is an interface for managing Docker containers, images, networks, and volumes. Prior to 1.19.2, the PUT /api/environme... | Not Provided | 2026-05-29 | 2026-05-29 |
| CVE-2026-44881 json | Portainer Community Edition is a lightweight service delivery platform for containerized applications that can be used to man... | Not Provided | 2026-05-28 | 2026-05-29 |