In a move that will certainly bolster confidence in container security, Docker has announced a new vulnerability, CVE-2026-34040, that essentially rolls out the red carpet for attackers. This glaring oversight allows them to waltz through authorization like it’s a VIP entrance, proving once again that when it rains it pours in the land of cybersecurity.

According to Docker’s latest security blunder, I mean, update, you can bypass the authorization plugins as easily as eating a bowl of alphabet soup. We can only assume the testing process for security at Docker involves handshakes and crossed fingers over actual code review.

Perhaps this latest CVE, with a modest CVSS score of 8.8, is Docker’s way of keeping hackers employed. After all, who needs enemies when you have vulnerabilities stemming from incomplete fixes of past disasters? Maybe next time, they’ll just leave the door wide open.