4 matches found
Docker Desktop < 4.6.0 Improper Link Resolution
The version of Docker Desktop for Windows is prior to 4.6.0. It is therefore affected by a vulnerability that allows an attacker to overwrite any administrator writable files by creating a symlink in place of where the installer writes its log file. Note that Nessus has not tested for this issue...
CVE-2022-26659
Docker Desktop installer on Windows in versions before 4.6.0 allows an attacker to overwrite any administrator writable files by creating a symlink in place of where the installer writes its log file. Starting from version 4.6.0, the Docker Desktop installer, when run elevated, will write its log...
CVE-2022-26659
Docker Desktop for Windows prior to version 4.6.0 is affected. The installer can be abused to overwrite administrator-writable files by creating a symlink that redirects the log file path, as described in RH and NVD entries for CVE-2022-26659. Starting with 4.6.0, the installer writes logs to a l...
CVE-2022-26659
Docker Desktop installer on Windows in versions before 4.6.0 allows an attacker to overwrite any administrator writable files by creating a symlink in place of where the installer writes its log file. Starting from version 4.6.0, the Docker Desktop installer, when run elevated, will write its log...