It is possible to make the Docker daemon available remotely over a TCP port. If this is required, you should ensure that TLS authentication is configured in order to restrict access to the Docker daemon via IP address and port.
Recommended Mitigation
Review the dockerd startup options and the content of /etc/docker/daemon.json.
Workload misconfigurations
