CVE-2026-33997: Moby: Off-by-one error in plugin privilege validation
Moby is an open source container framework. Prior to version 29.3.1, a security vulnerability has been detected that allows plugins privilege validation to be bypassed during docker plugin install. Due to an error in the daemon's privilege comparison logic, the daemon may incorrectly accept a privilege set that differs from the one approved by the user. Plugins that request exactly one privilege are also affected, because no comparison is performed at all. This issue has been patched in version 29.3.1.
Security readout for executives and security teams
Plain-English summary
Moby before 29.3.1 can accept Docker plugin privileges that differ from what a user approved during plugin installation. This can let a malicious or compromised plugin gain unexpected capabilities on a container host. The issue is high severity, but the provided sources do not show active exploitation.
Executive priority
Prioritize patching container hosts that allow Docker plugin installation or rely on third-party plugins. For tightly controlled environments with no plugin use, handle through normal high-severity maintenance while verifying exposure.
Technical view
An off-by-one error in the daemon's plugin privilege comparison can bypass validation during docker plugin install. Plugins requesting exactly one privilege are affected because no comparison is performed. The CVSS vector indicates network attack surface, low complexity, high privileges, required user interaction, changed scope, and high impact.
Likely exposure
Exposure is most likely on hosts running Moby before 29.3.1 where Docker plugins can be installed, especially from third-party or less controlled sources. Environments that do not use Docker plugins still should verify package versions, but practical exposure appears narrower.
Exploitation context
The bundle marks KEV as false and provides no evidence of active exploitation. Abuse would require a plugin installation approval path and a privilege mismatch accepted by the daemon. Do not treat this as a generic container escape without matching plugin-install conditions.
Researcher notes
The key behavior is privilege validation bypass in daemon comparison logic, including a single-privilege edge case. Sources identify CWE-193 and CWE-266, Moby versions before 29.3.1, and patch availability in 29.3.1. Public evidence in the bundle is insufficient to claim exploitation.
Mitigation direction
Upgrade Moby or Docker packages to version 29.3.1 or later.
Apply relevant Red Hat advisories where using vendor-packaged components.
Restrict Docker plugin installation to trusted administrators and approved sources.
Review installed plugins and remove unnecessary or untrusted plugins.
Monitor vendor guidance for distribution-specific fixes or backports.
Validation and detection
Inventory hosts running Moby or Docker engine versions before 29.3.1.
Identify systems where Docker plugins are installed or plugin installation is permitted.
Confirm vendor package status against Red Hat or distribution advisories.
Review change records for recent third-party Docker plugin installs.
Verify remediation by confirming patched engine package versions.
Generated from the cited source records. This long-tail analysis has not been individually reviewed by a named human.
Potential ATT&CK relevance
Conservative CVE-to-ATT&CK context
These mappings and lookup hints may be relevant to the vulnerability behavior, CWE, affected product, or exposure path. Glexia-inferred context is not an official MITRE, ATT&CK, CWE, or CVE Program mapping.
ATT&CK lookup starting points
Use these exact CWE pages and searches to review the Glexia ATT&CK library from this CVE's weakness and description context.
cwe · low confidence lookup
CWE-193: Exact CWE lookup
Use the exact CWE identifier as the starting point before reviewing related ATT&CK behavior. Open the exact CWE lookup page first, then review the ATT&CK searches from that MITRE weakness context. This is a Glexia lookup hint, not an official ATT&CK mapping.
Use the exact CWE identifier as the starting point before reviewing related ATT&CK behavior. Open the exact CWE lookup page first, then review the ATT&CK searches from that MITRE weakness context. This is a Glexia lookup hint, not an official ATT&CK mapping.
The affected technology mentions containers, so container-specific ATT&CK technique review may help. This is a Glexia inferred lookup path, not an official MITRE, ATT&CK, or CVE Program mapping.
These fields come from the CVE record and ADP containers, not from Glexia's Take. They preserve time-varying source decisions such as CISA SSVC, KEV status, CVSS metrics, and provider references.
2CVSS vectors
5Timeline events
2ADP providers
9Source links
SSVC decision data
CISA-ADPCISA Coordinator
Timestamp
Version
2.0.3
Exploitation: noneAutomatable: noTechnical Impact: total
CVSS vector scores
2 official scores
We collect every scored CVSS vector available in the official CNA and ADP containers. When more than one version is present, the table keeps the source vectors side by side instead of collapsing them into the highest score.
CWE links open Glexia weakness intelligence pages with official CWE context, developer remediation guidance, and related CVE mappings.
CWE-193 · source CWE mapping
Off-by-one Error
Off-by-one Error represents a recurring weakness pattern that can create exploitable paths when design, validation, or implementation controls are missing.
Incorrect Privilege Assignment represents a recurring weakness pattern that can create exploitable paths when design, validation, or implementation controls are missing.