CVE-2026-55887: Docker MCP Gateway: Argument injection via OCI image label YAML

June 18, 2026

A maliciously crafted OCI image label can inject arbitrary arguments into the docker run command line constructed by the MCP Gateway. An attacker who controls an image that the victim references via docker://, or that the victim’s catalog pulls a snapshot from, can mount the host filesystem, run as UID 0, and execute arbitrary code on the host.

References

github.com/advisories/GHSA-r2xf-7jw5-pjg6
github.com/docker/mcp-gateway/security/advisories/GHSA-r2xf-7jw5-pjg6
nvd.nist.gov/vuln/detail/CVE-2026-55887

Code Behaviors & Features

Detect and mitigate CVE-2026-55887 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →