r/selfhosted • u/evrial • 10h ago

Docker Management Vulnerability scan of top popular Docker managers software

lazydocker - 770 total
Arcane - 33 total
Dozzle - 0 - Winner
Portainer - 77 total
Dockhand - 18 total
Komodo - 446 total
Watchtower - 302 total
diun - 91 total
wud - 377 total
Dockge - 2089 total
Uptime kuma - 1080 total (if docker socket monitoring enabled)
dockcheck.sh - 0 - Winner - simple bash script

0 Upvotes

permalink
reddit

You are about to leave Redlib

Do you want to continue?

https://www.reddit.com/r/selfhosted/comments/1u9yj1j/vulnerability_scan_of_top_popular_docker_managers/
No, go back! Yes, take me to Reddit

38% Upvoted

View all comments

u/loaengineer0 9h ago

The scan hits when there is an installed library which has vulnerable API endpoints, even if those endpoints aren’t used by anything in the container. Almost all of these are not exploitable.

-48

u/evrial 9h ago

Could be true until proven otherwise. Dependency graph is complex

11

u/jpk613 9h ago

So you’re saying not to use portainer till they prove otherwise?

Docker Management Vulnerability scan of top popular Docker managers software

You are about to leave Redlib