Docker Desktop vulnerabilities
13 known vulnerabilities affecting docker/desktop.
Total CVEs
13
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL2HIGH8MEDIUM3
Vulnerabilities
Page 1 of 1
CVE-2024-8696P2CRITICALCVSS 9.8fixed in 4.34.22024-09-12
CVE-2024-8696 [CRITICAL] CWE-79 CVE-2024-8696: A remote code execution (RCE) vulnerability via crafted extension publisher-url/additional-urls coul
A remote code execution (RCE) vulnerability via crafted extension publisher-url/additional-urls could be abused by a malicious extension in Docker Desktop before 4.34.2.
nvd
CVE-2024-8695P2CRITICALCVSS 9.8fixed in 4.34.22024-09-12
CVE-2024-8695 [CRITICAL] CWE-79 CVE-2024-8695: A remote code execution (RCE) vulnerability via crafted extension description/changelog could be abu
A remote code execution (RCE) vulnerability via crafted extension description/changelog could be abused by a malicious extension in Docker Desktop before 4.34.2.
nvd
CVE-2025-3224P3HIGHCVSS 7.8fixed in 4.41.02025-04-28
CVE-2025-3224 [HIGH] CWE-59 CVE-2025-3224: A vulnerability in the update process of Docker Desktop for Windows versions prior to 4.41.0 could a
A vulnerability in the update process of Docker Desktop for Windows versions prior to 4.41.0 could allow a local, low-privileged attacker to escalate privileges to SYSTEM. During an update, Docker Desktop attempts to delete files and subdirectories under the path C:\ProgramData\Docker\config with high privileges. However, this directory often does not ex
nvd
CVE-2021-37841P3HIGHCVSS 7.8fixed in 3.6.02021-08-12
CVE-2021-37841 [HIGH] CWE-732 CVE-2021-37841: Docker Desktop before 3.6.0 suffers from incorrect access control. If a low-privileged account is ab
Docker Desktop before 3.6.0 suffers from incorrect access control. If a low-privileged account is able to access the server running the Windows containers, it can lead to a full container compromise in both process isolation and Hyper-V isolation modes. This security issue leads an attacker with low privilege to read, write and possibly even execute c
nvd
CVE-2026-2664P3HIGHCVSS 7.8fixed in 4.62.02026-02-24
CVE-2026-2664 [HIGH] CWE-125 CVE-2026-2664: An out of bounds read vulnerability in the grpcfuse kernel module present in the Linux VM in Docker
An out of bounds read vulnerability in the grpcfuse kernel module present in the Linux VM in Docker Desktop for Windows, Linux and macOS up to version 4.61.0 could allow a local attacker to cause an unspecified impact by writing to /proc/docker entries. The issue has been fixed in Docker Desktop 4.62.0 .
nvd
CVE-2023-1802P3HIGHCVSS 7.5v4.17.0v4.17.12023-04-06
CVE-2023-1802 [HIGH] CWE-319 CVE-2023-1802: In Docker Desktop 4.17.x the Artifactory Integration falls back to sending registry credentials over
In Docker Desktop 4.17.x the Artifactory Integration falls back to sending registry credentials over plain HTTP if the HTTPS health check has failed. A targeted network sniffing attack can lead to a disclosure of sensitive information. Only users who have Access Experimental Features enabled and have logged in to a private registry are affected.
nvd
CVE-2022-37326P3HIGHCVSS 7.8fixed in 4.6.02023-04-27
CVE-2022-37326 [HIGH] CWE-863 CVE-2022-37326: Docker Desktop for Windows before 4.6.0 allows attackers to delete (or create) any file through the
Docker Desktop for Windows before 4.6.0 allows attackers to delete (or create) any file through the dockerBackendV2 windowscontainers/start API by controlling the pidfile field inside the DaemonJSON field in the WindowsContainerStartRequest class. This can indirectly lead to privilege escalation.
nvd
CVE-2020-10665P4MEDIUMCVSS 6.7fixed in 2.1.0.9fixed in 2.2.0.4+1 more2020-03-18
CVE-2020-10665 [MEDIUM] CWE-59 CVE-2020-10665: Docker Desktop allows local privilege escalation to NT AUTHORITY\SYSTEM because it mishandles the co
Docker Desktop allows local privilege escalation to NT AUTHORITY\SYSTEM because it mishandles the collection of diagnostics with Administrator privileges, leading to arbitrary DACL permissions overwrites and arbitrary file writes. This affects Docker Desktop Enterprise before 2.1.0.9, Docker Desktop for Windows Stable before 2.2.0.4, and Docker Deskt
nvd
CVE-2024-6222P4HIGHCVSS 7.0fixed in 4.29.02024-07-09
CVE-2024-6222 [HIGH] CWE-923 CVE-2024-6222: In Docker Desktop before v4.29.0, an attacker who has gained access to the Docker Desktop VM through
In Docker Desktop before v4.29.0, an attacker who has gained access to the Docker Desktop VM through a container breakout can further escape to the host by passing extensions and dashboard related IPC messages.
Docker Desktop v4.29.0 https://docs.docker.com/desktop/release-notes/#4290 fixes the issue on MacOS, Linux and Windows with Hyper-V backend.
A
nvd
CVE-2022-38730P4MEDIUMCVSS 6.3fixed in 4.6.02023-04-27
CVE-2022-38730 [MEDIUM] CWE-59 CVE-2022-38730: Docker Desktop for Windows before 4.6 allows attackers to overwrite any file through the windowscont
Docker Desktop for Windows before 4.6 allows attackers to overwrite any file through the windowscontainers/start dockerBackendV2 API by controlling the data-root field inside the DaemonJSON field in the WindowsContainerStartRequest class. This allows exploiting a symlink vulnerability in ..\dataRoot\network\files\local-kv.db because of a TOCTOU race
nvd
CVE-2022-31647P4HIGHCVSS 7.1fixed in 4.6.02023-04-27
CVE-2022-31647 [HIGH] CWE-59 CVE-2022-31647: Docker Desktop before 4.6.0 on Windows allows attackers to delete any file through the hyperv/destro
Docker Desktop before 4.6.0 on Windows allows attackers to delete any file through the hyperv/destroy dockerBackendV2 API via a symlink in the DataFolder parameter, a different vulnerability than CVE-2022-26659.
nvd
CVE-2022-34292P4HIGHCVSS 7.1fixed in 4.6.02023-04-27
CVE-2022-34292 [HIGH] CVE-2022-34292: Docker Desktop for Windows before 4.6.0 allows attackers to overwrite any file through a symlink att
Docker Desktop for Windows before 4.6.0 allows attackers to overwrite any file through a symlink attack on the hyperv/create dockerBackendV2 API by controlling the DataFolder parameter for DockerDesktop.vhdx, a similar issue to CVE-2022-31647.
nvd
CVE-2024-5652P4MEDIUMCVSS 5.5fixed in 4.31.02024-07-09
CVE-2024-5652 [MEDIUM] CWE-400 CVE-2024-5652: In Docker Desktop on Windows before v4.31.0 allows a user in the docker-users group to cause a Windo
In Docker Desktop on Windows before v4.31.0 allows a user in the docker-users group to cause a Windows Denial-of-Service through the exec-path Docker daemon config option in Windows containers mode.
nvd