PatchSiren

podman-desktop CVE debriefs

These pages are published after PatchSiren validates generated defensive summaries against stored public CVE and source evidence.

HIGH podman-desktop CVE published 2026-04-07

CVE-2026-34045

CVE-2026-34045 is a high-severity vulnerability in Podman Desktop's unauthenticated HTTP server. Prior to version 1.26.2, this server allows any network attacker to remotely trigger denial-of-service conditions and extract sensitive information. By exploiting missing connection limits and timeouts, an attacker can exhaust file descriptors and kernel memory, leading to application crashes or full host free [truncated]