SCA: security update for github.com/docker/docker (GHSA-4vq8-7jfc-9cvp)

medium Tenable Cloud Security Plugin ID 433359

Description

There are packages installed that are affected by a vulnerability referenced in the following CVE:

- Moby is an open source container framework developed by Docker Inc. that is distributed as Docker Engine,
Mirantis Container Runtime, and various other downstream projects/products. A firewalld vulnerability
affects Moby releases before 28.0.0. When firewalld reloads, Docker fails to re-create iptables rules that
isolate bridge networks, allowing any container to access all ports on any other container across
different bridge networks on the same host. This breaks network segmentation between containers that
should be isolated, creating significant risk in multi-tenant environments. Only containers in --internal
networks remain protected. Workarounds include reloading firewalld and either restarting the docker
daemon, re-creating bridge networks, or using rootless mode. Maintainers anticipate a fix for this issue
in version 25.0.13. (CVE-2025-54410)

Solution

Update the github.com/docker/docker library and its related packages to version 25.0.13 or later.

See Also

https://github.com/advisories/GHSA-4vq8-7jfc-9cvp

Plugin Details

Severity: Medium

ID: 433359

Version: Revision 1.6

Type: Local

Family: SCA Checks

Published: 8/14/2025

Updated: 7/2/2026

Supported Sensors: Tenable Cloud Security, Tenable Self-Hosted Container Security

Risk Information

VPR

Risk Factor: Low

Score: 2.3

Percentile: 9.4

Vendor

Vendor Severity: Low

CVSS v2

Risk Factor: Low

Base Score: 3.2

Temporal Score: 2.4

Vector: CVSS2#AV:L/AC:L/Au:S/C:P/I:P/A:N

CVSS Score Source: CVE-2025-54410

CVSS v3

Risk Factor: Medium

Base Score: 5.2

Temporal Score: 4.5

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N

Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C

Vulnerability Information

Exploit Ease: No known exploits are available

Patch Publication Date: 7/29/2025

Vulnerability Publication Date: 7/29/2025

Reference Information

CVE: CVE-2025-54410

cwe: CWE-909