Lucene search
K

4 matches found

NVD
NVD
added 2023/04/06 9:15 a.m.15 views

CVE-2023-1802

In Docker Desktop 4.17.x the Artifactory Integration falls back to sending registry credentials over plain HTTP if the HTTPS health check has failed. A targeted network sniffing attack can lead to a disclosure of sensitive information. Only users who have Access Experimental Features enabled and...

7.5CVSS6.2AI score0.00549EPSS
Exploits1References2
Cvelist
Cvelist
added 2023/04/06 8:52 a.m.21 views

CVE-2023-1802 In Docker Desktop 4.17.x the Artifactory Integration falls back to sending registry credentials over plain HTTP if the HTTPS health check has failed

In Docker Desktop 4.17.x the Artifactory Integration falls back to sending registry credentials over plain HTTP if the HTTPS health check has failed. A targeted network sniffing attack can lead to a disclosure of sensitive information. Only users who have Access Experimental Features enabled and...

5.9CVSS7.6AI score0.00549EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2023/04/06 8:52 a.m.9 views

CVE-2023-1802 In Docker Desktop 4.17.x the Artifactory Integration falls back to sending registry credentials over plain HTTP if the HTTPS health check has failed

In Docker Desktop 4.17.x the Artifactory Integration falls back to sending registry credentials over plain HTTP if the HTTPS health check has failed. A targeted network sniffing attack can lead to a disclosure of sensitive information. Only users who have Access Experimental Features enabled and...

5.9CVSS6.2AI score0.00549EPSS
Exploits1References2
CVE
CVE
added 2023/04/06 8:52 a.m.84 views

CVE-2023-1802

CVE-2023-1802 affects Docker Desktop 4.17.x where the Artifactory Integration falls back to sending registry credentials over plain HTTP when the HTTPS health check fails. This can allow a targeted network sniffing attack to disclose sensitive information. Affected users are those who have enable...

7.5CVSS6.5AI score0.00549EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder