{"uuid": "c882dcd2-1cf7-4fdf-90a9-fd39b5dcc974", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-33590", "type": "seen", "source": "https://bsky.app/profile/canartuc.com/post/3moel7rztfz2x", "content": "Portainer versions before 2.38.0 allowed bind mounts and privileged mode on user containers by default, letting an authenticated non-admin escalate to root-equivalent host access (CVE-2026-33590). Fixes are in 2.38.0 STS and 2.39.0 LTS. Should privileged mode ever default to on?\n#containers", "creation_timestamp": "2026-06-16T00:48:01.853589Z"}