EUVD-2025-14218

Malicious code in bioql PyPI...

EUVD-2025-12619

Malicious code in bioql PyPI...

CVE-2021-37841

Docker Desktop before 3.6.0 suffers from incorrect access control. If a low-privileged account is able to access the server running the Windows containers, it can lead to a full container compromise in both process isolation and Hyper-V isolation modes. This security issue leads an attacker with...

CVE-2025-3911

Recording of environment variables, configured for running containers, in Docker Desktop application logs could lead to unintentional disclosure of sensitive information such as api keys, passwords, etc. A malicious actor with read access to these logs could obtain sensitive credentials informati...

CVE-2025-4095 Registry Access Management (RAM) policies not applied when sign-in enforcement is configured via a configuration profile

Registry Access Management RAM is a security feature allowing administrators to restrict access for their developers to only allowed registries. When a MacOS configuration profile is used to enforce organization sign-in, the RAM policies are not being applied, which would allow Docker Desktop use...

Docker Desktop < 4.34.3 RCE

The version of Docker installed on the remote host is prior to 4.34.3. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-9348 advisory. - Docker Desktop before v4.34.3 allows RCE via unsanitized GitHub source link in Build view. CVE-2024-9348 Note that Nessus has not...