CVE-2026-34045 - Vulnerability Analysis
HighCVSS: 8.2Last Updated: April 7, 2026
Podman Desktop - Denial of Service & Information Disclosure
Published: April 7, 2026Updated: April 7, 2026Remote Exploitable
Overview
Podman Desktop < 1.26.2 contains a denial-of-service and information disclosure vulnerability caused by an unauthenticated HTTP server with missing connection limits and verbose error responses, letting remote attackers exhaust resources and disclose system details, exploit requires no authentication or user interaction.
Severity & Score
Severity: High
CVSS Score: 8.2
Impact
Remote attackers can cause application crashes, host freezes, and disclose sensitive system information, potentially aiding further exploitation.
Mitigation
Update to version 1.26.2 or later.
Related Resources
Details
- CVE ID
- CVE-2026-34045
- Severity
- High
- CVSS Score
- 8.2
- Type
- denial_of_service
- Status
- new
CWE
- CWE-209
CVSS Metrics
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H