DevOps & Containers

2375

Docker Dangerous

Docker daemon API without encryption — extremely dangerous if exposed

Port
2375
Protocol
TCP
Service
Docker
Security
Dangerous
Full name: Docker Daemon (unencrypted)

What is port 2375?

Port 2375 is the Docker daemon REST API without TLS. If exposed to the internet, anyone can gain complete control of the host — running arbitrary commands, reading all container data, spawning new containers, or using the host for cryptomining. This is one of the most common misconfigurations leading to serious data breaches. Use port 2376 (Docker with TLS) or bind Docker exclusively to a UNIX socket.

Quick checks

$ nc -zv example.com 2375
$ nmap -p 2375 example.com
$ telnet example.com 2375

Related ports

2376
Docker-TLS Docker daemon API secured with TLS
← All ports