VDB

GO-2025-3527

GO-2025-3527 PUBLISHED

buildx allows a possible credential leakage to telemetry endpoint in github.com/docker/buildx

Affected Products

VendorProductVersions
github.comdocker/buildx0, 0

Timeline

  • Mar 18, 2025 CVE Published
  • Feb 4, 2026 CVE Updated
  • May 1, 2026 Security Advisory

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›