Docker Compose Flaw

Docker Compose Flaw image
You are here:
  1. Home
  2. Threat Advisory
  3. Docker Compose Flaw

EXECUTIVE SUMMARY

A high-severity vulnerability in Docker Compose allows attackers to exploit path traversal through malicious OCI artifacts, enabling arbitrary file overwrites on the host system during routine operations.

  • CVE-2025-62725
  • CVSS Score: 8.9
  • Affected Sector: General
  • Affected Product: Docker Compose
  • Severity: High
  • Published Date: October 29, 2025

TECHNICAL DETAILS

The vulnerability, CVE-2025-62725, is a Path Traversal flaw in Docker Compose related to its handling of OCI artifacts.

  • Vulnerability Type: Path Traversal, this occurs when software improperly validates file paths, allowing attackers to manipulate directory references and access or overwrite files outside the intended directory scope.
  • Root Cause: Improper path validation in the OCI artifact handling logic, where attacker controlled annotations (e.g., com.docker.compose.file,…..

Read Full Report Here!

Download the Report

Date

Share

Previous Reports

Voicemail-Based Remote Access Attack image

Voicemail-Based Remote Access Attack

APT28 Exploiting Microsoft Office RTF image

APT28 Exploiting Microsoft Office RTFZero-Day

macOS RCE via Google Ads Malvertising image

macOS RCE via Google Ads Malvertising