Lucene search

PRIOn knowledge basePRION:CVE-2022-31647

HistoryApr 27, 2023 - 8:15 p.m.

Design/Logic Flaw

2023-04-2720:15:00

PRIOn knowledge base

www.prio-n.com

docker

desktop

windows

logic flaw

cve-2022-xxxx

hyperv

destroy

dockerbackendv2

symlink

datafolder

vulnerability

6.7 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

12.7%

JSON

Docker Desktop before 4.6.0 on Windows allows attackers to delete any file through the hyperv/destroy dockerBackendV2 API via a symlink in the DataFolder parameter, a different vulnerability than CVE-2022-26659.

CPENameOperatorVersion
desktoplt4.6.0

CPE	Name	Operator	Version
	desktop	lt	4.6.0

References

docs.docker.com/desktop/release-notes/

www.cyberark.com/resources/threat-research-blog/breaking-docker-named-pipes-systematically-docker-desktop-privilege-escalation-part-2