18 matches found
CVE-2022-23774
Docker Desktop for Windows is affected by CVE-2022-23774 (and follow-on CVE-2022-25365 noting an incomplete fix). The vulnerability enables attackers to move arbitrary files due to issues in the Windows Docker Desktop implementation, with references indicating this affects versions before 4.4.4 a...
CVE-2022-26659
Docker Desktop for Windows prior to version 4.6.0 is affected. The installer can be abused to overwrite administrator-writable files by creating a symlink that redirects the log file path, as described in RH and NVD entries for CVE-2022-26659. Starting with 4.6.0, the installer writes logs to a l...
CVE-2020-11492
Docker Desktop for Windows
CVE-2023-0628
Docker Desktop before 4.17.0 is affected by an issue where an attacker can execute arbitrary commands inside a Dev Environments container during initialization by convincing a user to open a crafted docker-desktop:// URL. Affected product: Docker Desktop (Dev Environments container). Root cause i...
CVE-2023-0629
Summary: CVE-2023-0629 affects Docker Desktop prior to 4.17.0, where an unprivileged user can bypass Enhanced Container Isolation (ECI) by setting the Docker host to docker.raw.sock or npipe:////.pipe/docker_engine_linux (Windows) via -H/DOCKER_HOST, allowing containers to run with reduced harden...
CVE-2021-44719
Summary: CVE-2021-44719 affects Docker Desktop 4.3.0 with an Incorrect Access Control issue. The vulnerability is described as a local-privilege/host-access problem where a container could access restricted host files, bypassing the allowed sharing rules (per Nessus NASL description for Mac, and ...
CVE-2023-0626
CVE-2023-0626 affects Docker Desktop prior to 4.12.0, where an RCE vulnerability exists via query parameters in the message-box route. Root cause is an insecure handling of query parameters in the message-box endpoint, leading to remote code execution with high impact on confidentiality, integrit...
CVE-2023-5165
CVE-2023-5165 affects Docker Desktop: versions 4.13.0 through 4.22.x are vulnerable to bypassing Enhanced Container Isolation (ECI) via the debug shell, allowing an unprivileged user to access restricted functionality. The root cause is exposure of the debug shell after startup, with access windo...
CVE-2023-5166
Docker Desktop before 4.23.0 is affected by CVE-2023-5166, enabling access token theft via a crafted extension icon URL. The issue affects Docker Desktop components related to extension icon handling and is described across multiple sources (NVD/NVD-like entries, PRION, PT-/security advisories). ...
CVE-2023-0633
CVE-2023-0633 affects Docker Desktop on Windows prior to 4.12.0. The vulnerability is an argument injection to the installer, which may result in local privilege escalation (LPE). Impact is high (C/H/I/H/A/H in NVD metrics; LOCAL attack vector; no user interaction required in some vectors). Publi...
CVE-2020-15360
The provided connected documents identify CVE-2020-15360 as an elevation of privilege in Docker Desktop 2.3.0.3 caused by com.docker.vmnetd due to a lack of client verification/authentication. Affected product/component: Docker Desktop (Windows/macOS) with the vmnetd helper. Impact: privilege esc...
CVE-2026-6406
CVE-2026-6406 describes a local privilege-escalation in Docker Desktop via Enhanced Container Isolation (ECI). When ECI is enabled, container-originated Docker socket mounts are denied unless explicitly allowed; however, the Docker CLI flag --use-api-socket mounts the Docker socket using HostConf...
CVE-2021-45449
CVE-2021-45449 affects Docker Desktop versions 4.3.0 and 4.3.1. A bug may log sensitive information (access tokens or passwords) on a user’s machine during login. Exploitation requires local access to the user’s files. The description notes that only users who have logged in on 4.3.0/4.3.1 are af...
CVE-2023-0627
Docker Desktop 4.11.x is affected by CVE-2023-0627 due to IPC response spoofing that bypasses the --no-windows-containers flag, enabling Local Privilege Escalation. The root cause is spoofed IPC responses within Docker Desktop, which can let a local attacker escalate privileges. The available ref...
CVE-2023-0625
Docker Desktop before 4.12.0 is vulnerable to remote code execution via a crafted extension description or changelog. Affected software is Docker Desktop (pre-4.12.0); impact is high/critical per CVSS. The issue arises from how extensions describe themselves or their changelogs, enabling RCE. Rem...
CVE-2026-5843
The CVE describes a vulnerability in Docker Model Runner (macOS) where the MLX-LM backend unconditionally imports and executes arbitrary Python files specified by model_file in a model's config.json via importlib, without a trust_remote_code gate or sandboxing. This enables container-to-host arbi...
CVE-2026-5817
CVE-2026-5817 affects the vllm-metal backend used by Docker Model Runner on macOS. The backend loads model tokenizers with trust_remote_code=True, causing transformers.AutoTokenizer.from_pretrained() to import and execute arbitrary Python files from models pulled from an OCI registry. This can en...
CVE-2025-13743
Docker Desktop