How is CVE-2026-45406 exploited?

Network reachability (required): The attacker must reach the Dokku service over the network to push a repository containing the malicious filename (AV:N). Authentication (required): A low-privilege account is sufficient; the attacker only needs push access to a Dokku app repository (PR:L). Victim interaction (required): A deploy of the affected app must be triggered, meaning a legitimate user or automated pipeline must initiate the deploy action after the malicious file is in place (UI:R). Attack complexity (info): Exploit conditions are reliable and free of environmental dependencies; crafting a filename that breaks single-quote shell interpolation is straightforward and repeatable (AC:L).

What is the impact of CVE-2026-45406?

Executes arbitrary shell commands on the host as the dokku user, giving the attacker a persistent foothold on the underlying server. Reads secrets, environment variables, and credentials stored on the host or accessible to the dokku user, including app config and SSH keys. Modifies or deletes app data, configuration files, and deployed workloads on the host. Disrupts or destroys running containers and services managed by Dokku, causing full service outage.

Back to search

CRITICALCVE-2026-45406Published 2026-06-26Modified 2026-06-26CNA GitHub_M

CVE-2026-45406: Dokku: Host RCE via Maliciously Named OpenResty Include Files Injected Through eval

Dokku is a docker-powered PaaS. Prior to 0.38.2, the openresty-vhosts plugin copies files from an app's openresty/http-includes/ git repository directory to the host and then interpolates their filenames, unescaped, into a single-quoted shell string that is later parsed by eval. A filename containing a single quote breaks the quoting and allows command substitution to execute arbitrary commands on the host as the dokku user during the app's next deploy. This vulnerability is fixed in 0.38.2.

CVSS v3.1: 9.0
Severity: CRITICAL
Fixed in: —
Affected Products: 1

HarborGuard Analysis

Synopsis

A command injection vulnerability in Dokku's openresty-vhosts plugin allows an attacker to execute arbitrary commands on the host by crafting a maliciously named file inside an app's openresty/http-includes/ git directory. The attack is reachable over the network and requires a low-privilege account plus a victim deploy action; the unescaped filename is interpolated into a single-quoted shell string that is passed to eval, breaking quoting and enabling command substitution. Successful exploitation gives the attacker full remote code execution on the host as the dokku user, with high impact to confidentiality, integrity, and availability. HarborGuard tracks this advisory and will make a patched-image rebuild available the moment an upstream fix is published.

HarborGuard Coverage

Detection

Detection for CVE-2026-45406 is available across every HarborGuard environment: the CVE is ingested from upstream feeds within minutes of publication and matched against all customer images, including custom-built images that bundle Dokku or the openresty-vhosts plugin. No manual configuration is required for the match to run.

Available

Triage

HarborGuard scores this finding at CVSS 9.0 (Critical) and is capable of weighting that score against each customer environment's compliance policy to determine urgency and routing. Triage results are surfaced to the appropriate team inbox within each customer organization based on configured policy rules.

Available

Patch

Because no fix version has been published upstream, HarborGuard re-checks the advisory on every ingest cycle and will make a patched-image rebuild available automatically the moment the upstream fix lands. Until then, HarborGuard continues to flag affected images in each customer's registry and pipeline scans.

Pending upstream

Exploit Conditions

Network reachabilityRequired
The attacker must reach the Dokku service over the network to push a repository containing the malicious filename (AV:N).
AuthenticationRequired
A low-privilege account is sufficient; the attacker only needs push access to a Dokku app repository (PR:L).
Victim interactionRequired
A deploy of the affected app must be triggered, meaning a legitimate user or automated pipeline must initiate the deploy action after the malicious file is in place (UI:R).
Attack complexityDetail
Exploit conditions are reliable and free of environmental dependencies; crafting a filename that breaks single-quote shell interpolation is straightforward and repeatable (AC:L).

Blast Radius

Executes arbitrary shell commands on the host as the dokku user, giving the attacker a persistent foothold on the underlying server.
Reads secrets, environment variables, and credentials stored on the host or accessible to the dokku user, including app config and SSH keys.
Modifies or deletes app data, configuration files, and deployed workloads on the host.
Disrupts or destroys running containers and services managed by Dokku, causing full service outage.

How HarborGuard Handles This

Available on HarborGuard: because no upstream fix version has been published for CVE-2026-45406, HarborGuard continuously re-checks the advisory on every ingest cycle and will automatically make a patched-image rebuild available the moment the Dokku project ships a remediated release. In the meantime, affected images are flagged in every customer registry and CI/CD pipeline scan that includes Dokku or the openresty-vhosts plugin. As compensating controls, consider applying network-policy isolation to restrict which identities can push to Dokku app repositories, auditing the contents of any openresty/http-includes/ directories for unexpected filenames, and disabling automatic deploys in favor of gated, reviewed deploy approvals. For customers with auto-remediation enabled, a patched rebuild, regression test run, and PR against affected workloads will be triggered automatically once an upstream fix is confirmed.

See how HarborGuard automates this

Affected packages

dokku / dokku
< 0.38.2

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H

References

Metrics

Get notified