4 matches found
CVE-2025-14740
Docker Desktop for Windows contains multiple incorrect permission assignment vulnerabilities in the installer's handling of the C:\ProgramData\DockerDesktop directory. The installer creates this directory without proper ownership verification, creating two exploitation scenarios: Scenario 1...
CVE-2025-14740 Docker Desktop for Windows Incorrect Permission Assignment Privilege Escalation Vulnerabilities
Docker Desktop for Windows contains multiple incorrect permission assignment vulnerabilities in the installer's handling of the C:\ProgramData\DockerDesktop directory. The installer creates this directory without proper ownership verification, creating two exploitation scenarios: Scenario 1...
The vulnerability of the Docker Desktop for Windows platform, related to the improper assignment of permissions to the docker-credential-wincred.exe file, allows a malicious individual to escalate their privileges.
The vulnerability of the Docker Desktop for Windows platform, which is used for developing and delivering container applications, is related to the incorrect assignment of permissions for the file docker-credential-wincred.exe in the %PROGRAMDATA%\DockerDesktop\version-bin directory. Exploiting...
CVE-2019-15752
Docker Desktop Community Edition before 2.1.0.1 allows local users to gain privileges by placing a Trojan horse docker-credential-wincred.exe file in %PROGRAMDATA%\DockerDesktop\version-bin\ as a low-privilege user, and then waiting for an admin or service user to authenticate with Docker, restar...