EIP-2026-102822
PRE-CVEDocker Daemon - Local Privilege Escalation (Metasploit)
Title source: legacyExploitation Summary
EIP tracks 1 public exploit for EIP-2026-102822. PoCs published by Metasploit.
AI-analyzed exploit summary This Metasploit module exploits a Docker daemon privilege escalation vulnerability by creating a Docker container with host directories mounted, then using the container to modify file permissions on the host to achieve root privileges.
Description
Docker Daemon - Local Privilege Escalation (Metasploit)
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by Metasploit · rubylocallinux
https://www.exploit-db.com/exploits/40394
This Metasploit module exploits a Docker daemon privilege escalation vulnerability by creating a Docker container with host directories mounted, then using the container to modify file permissions on the host to achieve root privileges.
Classification
Working Poc 100%
Attack Type
Lpe
Complexity
Moderate
Reliability
Reliable
Target:
Docker Daemon (versions prior to fix)
Auth required
Prerequisites:
Access to a user account with Docker daemon permissions (e.g., member of the 'docker' group) · Docker daemon running on the host
MITRE ATT&CK
devstral-2 · analyzed Feb 18, 2026
Full analysis →
Details
Status
pre_cve
Tracked Since
Feb 18, 2026