Docker公司修复了Windows和macOS版Docker Desktop应用程序中的一个高危漏洞（CVE-2025-9074，CVSS评分9.3），攻击者可能利用该漏洞突破容器隔离限制。

研究人员发现Docker WindowsPC机版有项服务器端请求伪造（Server-Side Request Forgery，SSRF）漏洞，能让攻击者从Docker容器非授权访问网站、创建高权限容器，甚至取得整台Windows主机的访问权。

Streamline your Windows development workflow with these 4 must-have Docker containers: NGINX, PostgreSQL, Node.js, and Redis. Simplify setup, avoid conflicts, and boost productivity.

A critical vulnerability in Docker Desktop for Windows and macOS allows compromising the host by running a malicious ...

A critical vulnerability in Docker Desktop allows attackers to modify the filesystem of Windows hosts to become ...

"A malicious container running on Docker Desktop could access the Docker Engine and launch additional containers without ...

Docker containers are their own specific thing, and while Windows Server containers act like Docker containers in their ability to share but isolate — which is why I have referred to them as ...

Microsoft has integrated Docker Engine - a popualr application container management platform into its Windows Server 2016 release.

The short story is that Microsoft and Docker have penned a partnership that will see developers able to create Windows Server Docker containers. The long story has lots of context to it.