CVE-2026-32285

ADVISORY - github

Summary

The Delete function fails to properly validate offsets when processing malformed JSON input. This can lead to a negative slice index and a runtime panic, allowing a denial of service attack.

EPSS Score⁠: 0.00029 (0.082)

Common Weakness Enumeration (CWE)

ADVISORY - nist

CWE-129⁠

Improper Validation of Array Index

ADVISORY - github

CWE-125⁠

Out-of-bounds Read

CWE-129⁠

Improper Validation of Array Index

Impacted images

Advisories

Sign in to Docker Scout

See which of your images are affected by this CVE and how to fix them by signing into Docker Scout.