PatchSiren

10ij CVE debriefs

These pages are published after PatchSiren validates generated defensive summaries against stored public CVE and source evidence.

MEDIUM 10ij CVE published 2026-04-09

CVE-2026-39848

CVE-2026-39848 is a vulnerability in the Dockyard Docker container management app that allows a remote attacker to cause a logged-in administrator's browser to request specific actions, potentially starting or stopping target containers. The vulnerability exists in the Dockyard app prior to version 1.1.0, where Docker container start and stop operations are performed through GET requests without CSRF prot [truncated]