Description
Portainer Community Edition is a lightweight service delivery platform for containerized applications that can be used to manage Docker, Swarm, Kubernetes and ACI environments. From 2.33.0 to before 2.33.8, 2.39.2, and 2.41.0, Portainer offers an environment-level Disable bind mounts for non-administrators security setting that blocks regular users from binding host paths into containers they create through the Portainer-mediated Docker API. The check that enforces this setting only inspected the legacy HostConfig.Binds array on the container-create proxy and never looked at the equivalent HostConfig.Mounts array. Any authenticated user with rights to create containers on a Docker environment where the restriction is enabled could submit a bind-typed entry under HostConfig.Mounts and mount any host path into their container. This vulnerability is fixed in 2.33.8, 2.39.2, and 2.41.0.
Published: 2026-05-28
Score: 8.5 High
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

Portainer Community Edition versions 2.33.0 through 2.33.7, 2.39.0 through 2.39.1, and earlier 2.41.0 releases allow users who are not administrators to bypass the bind‑mount restriction that is intended to prevent non‑admin users from mounting host paths into containers. The enforcement check only examined the older HostConfig.Binds array and ignored the newer HostConfig.Mounts array used by the Docker API. Consequently, an authenticated user with permission to create containers on a protected Docker environment can submit a mount entry under HostConfig.Mounts and bind any host directory into the container. This grants that user read (and possible write) access to arbitrary files on the host, enabling sensitive data exposure, modification, or execution of code on the host system. The vulnerability is a direct non‑relevant access flaw (CWE‑863) that yields a high level of confidentiality and integrity compromise.

Affected Systems

The affected product is Portainer Community Edition. Vulnerable versions include 2.33.0 through 2.33.7, 2.39.0 through 2.39.1, and the 2.41.0 release before the fix. The vulnerability is fixed in version 2.33.8 and later, version 2.39.2 and later, and version 2.41.0 and later. Users running any of these older versions should verify the current build number and plan for an upgrade.

Risk and Exploitability

The CVSS score of 8.5 indicates high severity, and the lack of an EPSS entry means the current exploitation probability is unknown but not explicitly low. The vulnerability is not in the CISA KEV catalog. An attacker needs only authenticated access to Portainer with container creation privileges and does not need any additional network exposure beyond the existing Portainer connection. Successful exploitation provides the attacker with privileged host access via mounted volumes, presenting a clear risk of data exfiltration or system compromise. In environments where bind mounts are enabled for non‑admins, the attack surface expands dramatically, making this an acute risk for organizations that rely on the portainer‑managed Docker workloads.

Generated by OpenCVE AI on May 28, 2026 at 22:23 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade Portainer to version 2.33.8, 2.39.2, or 2.41.0 or later, which contains the fix.
  • If an upgrade cannot be performed immediately, revoke container creation rights for non‑admin users or restrict them to the minimum necessary role until the patch is applied.
  • As a temporary hardening measure, enforce a host‑level verification that HostConfig.Mounts is empty before allowing container start, or disable host bind mounts via Docker daemon configuration for all users.

Generated by OpenCVE AI on May 28, 2026 at 22:23 UTC.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
Github GHSA Github GHSA GHSA-7fw3-x4r2-g7wc Portainer has a bind-mount restriction bypass via HostConfig.Mounts
History

Fri, 29 May 2026 20:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Thu, 28 May 2026 22:45:00 +0000

Type Values Removed Values Added
First Time appeared Portainer
Portainer portainer
Vendors & Products Portainer
Portainer portainer

Thu, 28 May 2026 21:30:00 +0000

Type Values Removed Values Added
Description Portainer Community Edition is a lightweight service delivery platform for containerized applications that can be used to manage Docker, Swarm, Kubernetes and ACI environments. From 2.33.0 to before 2.33.8, 2.39.2, and 2.41.0, Portainer offers an environment-level Disable bind mounts for non-administrators security setting that blocks regular users from binding host paths into containers they create through the Portainer-mediated Docker API. The check that enforces this setting only inspected the legacy HostConfig.Binds array on the container-create proxy and never looked at the equivalent HostConfig.Mounts array. Any authenticated user with rights to create containers on a Docker environment where the restriction is enabled could submit a bind-typed entry under HostConfig.Mounts and mount any host path into their container. This vulnerability is fixed in 2.33.8, 2.39.2, and 2.41.0.
Title Portainer: Bind-mount restriction bypass via HostConfig.Mounts
Weaknesses CWE-863
References
Metrics cvssV3_1

{'score': 8.5, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:L/A:N'}

Subscriptions

Portainer Portainer
cve-icon MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published:

Updated: 2026-05-29T19:08:21.955Z

Reserved: 2026-05-07T21:21:48.353Z

Link: CVE-2026-44850

cve-icon Vulnrichment

Updated: 2026-05-29T19:08:15.370Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2026-05-28T22:16:59.107

Modified: 2026-05-29T15:06:44.207

Link: CVE-2026-44850

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-05-28T22:30:28Z

Weaknesses