Arcane is an interface for managing Docker containers, images, networks, and volumes. Prior to 1.19.4, ProjectService.GetProjectFileContent returns the contents…

A critical path traversal vulnerability in Arcane, a Docker container management interface, allows authenticated users to read arbitrary files on the system. The vulnerability exists in versions prior to 1.19.4 where ProjectService.GetProjectFileContent processes Docker Compose include directives without proper path validation. Attackers can exploit this to read sensitive files including the SQLite database containing password hashes and API keys, leading to privilege escalation and potential remote code execution through Docker control plane access.