Vulnerabilities ›

CVE-2026-44848

High ⚡ Exploit Available

CWE-862 — Weakness Type

                    Published: May 28, 2026                      ·  Modified: Jun 4, 2026                      ·  Source: NVD                

CVSS v3

8.8

🔗 NVD Official

📄 Description (English)

Portainer Community Edition is a lightweight service delivery platform for containerized applications that can be used to manage Docker, Swarm, Kubernetes and ACI environments. From 2.33.0 to before 2.33.8, 2.39.2, and 2.41.0, The Docker plugin management endpoints (/plugins/*) were not registered with a handler, so standard users with endpoint access could call privileged plugin operations — including installing and enabling plugins — directly against the underlying Docker daemon. The vulnerability is exposed when a non-admin Portainer user (Standard User role, or any role granted endpoint-level access) has been given access to a Docker endpoint via Portainer RBAC. This vulnerability is fixed in 2.33.8, 2.39.2, and 2.41.0.

🤖 AI Executive Summary

Portainer Community Edition versions 2.33.0 to 2.41.0 allow standard users with endpoint access to execute privileged Docker plugin operations including installation and enablement without proper authorization checks. This vulnerability affects Docker, Swarm, Kubernetes, and ACI environments managed through Portainer.

📄 Description (Arabic)

تحتوي نقاط نهاية إدارة ملحقات Docker في Portainer على ثغرة تجاوز تفويض تسمح للمستخدمين العاديين بتثبيت وتفعيل ملحقات Docker مباشرة. تؤثر الثغرة على المستخدمين الذين لديهم وصول على مستوى نقطة النهاية عبر نظام التحكم في الوصول القائم على الأدوار في Portainer.

🤖 ملخص تنفيذي (AI)

إصدارات Portainer Community Edition من 2.33.0 إلى 2.41.0 تسمح للمستخدمين العاديين بالوصول إلى نقطة نهاية بتنفيذ عمليات Docker plugin مميزة دون فحوصات تفويض مناسبة. تؤثر هذه الثغرة على بيئات Docker و Swarm و Kubernetes و ACI المدارة عبر Portainer.

🤖 AI Intelligence Analysis Analyzed: Jun 2, 2026 18:03

🇸🇦 Saudi Arabia Impact Assessment

Saudi Relevance: high

🏢 Affected Saudi Sectors

banking telecom energy government healthcare

🎯 MITRE ATT&CK Techniques

T1548.004 T1548.002 T1190

⚖️ Saudi Risk Score (AI)

8.0

/ 10.0

🔧 Remediation Steps (English)

Upgrade Portainer Community Edition to version 2.33.8, 2.39.2, or 2.41.0 or later immediately. Review and restrict endpoint access permissions for standard users, ensuring only authorized administrators can manage Docker plugins. Implement network segmentation to limit access to Portainer endpoints.

🔧 خطوات المعالجة (العربية)

قم بترقية Portainer Community Edition إلى الإصدار 2.33.8 أو 2.39.2 أو 2.41.0 أو أحدث فوراً. راجع وقيّد أذونات الوصول إلى نقطة النهاية للمستخدمين العاديين، مما يضمن أن المسؤولين المصرحين فقط يمكنهم إدارة ملحقات Docker. طبّق تقسيم الشبكة لتحديد الوصول إلى نقاط نهاية Portainer.

📋 Regulatory Compliance Mapping

🟢 NCA ECC 2024

5.1.1 5.1.2 5.2.1

🔵 SAMA CSF

AC-2 AC-3 AC-6

🟡 ISO 27001:2022

A.6.1.2 A.9.1.1 A.9.2.1 A.9.4.3

🔗 References & Sources 2

🔗

https://github.com/portainer/portainer/security/advisories/GHSA-rrmm-9v76-h3p4

security-advisories@github.com

Exploit Third Party Advisory

🔗

https://github.com/portainer/portainer/security/advisories/GHSA-rrmm-9v76-h3p4

134c704f-9b21-4f2e-91b3-4a467353bcc0

Exploit Third Party Advisory

📦 Affected Products / CPE 3 entries

portainer:portainer

portainer:portainer:2.40.0

📊 CVSS Score

8.8

/ 10.0 — High

📊 CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Attack VectorN — None / Network

Attack ComplexityL — Low / Local

Privileges RequiredL — Low / Local

User InteractionN — None / Network

ScopeU — Unchanged

ConfidentialityH — High

IntegrityH — High

AvailabilityH — High

📋 Quick Facts

Severity High

CVSS Score8.8

CWECWE-862

EPSS0.04%

Exploit ✓ Yes

Patch ✗ No

Published 2026-05-28

Source Feed nvd

🇸🇦 Saudi Risk Score

8.0

/ 10.0 — Saudi Risk

Priority: HIGH

🏷️ Tags

exploit-available CWE-862

⚡ Actions

🔗 NVD Official Page ⚡ Exploit-DB Search 🐙 GitHub PoC Search 🎯 MITRE ATT&CK 📊 CVE Details

CVE-2026-44848

Introduce Yourself

Sign In Required