CVE-2026-34045

Name of the Vulnerable Software and Affected Versions Podman Desktop versions prior to 1.26.2

Description Podman Desktop, a graphical tool for container and Kubernetes development, contains a flaw where an unauthenticated HTTP server can be exploited by network attackers. This allows for denial-of-service conditions through exhaustion of file descriptors and kernel memory, potentially leading to application crashes or a complete host freeze. Verbose error responses reveal internal paths and system details, including usernames on Windows systems, which could aid in further exploitation. The issue is exploitable over the network without authentication or user interaction.

Recommendations Update to version 1.26.2 or later.