cbcvebase.

Docker Desktop vulnerabilities

32 known vulnerabilities affecting docker/docker_desktop.

Total CVEs
32
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
CRITICAL5HIGH20MEDIUM7

Vulnerabilities

Page 1 of 2
CVE-2025-9074P3CRITICALCVSS 9.3PoC≥ 4.25, < 4.44.32025-08-20
CVE-2025-9074 [CRITICAL] CWE-668 CVE-2025-9074: A vulnerability was identified in Docker Desktop that allows local running Linux containers to acces A vulnerability was identified in Docker Desktop that allows local running Linux containers to access the Docker Engine API via the configured Docker subnet, at 192.168.65.7:2375 by default. This vulnerability occurs with or without Enhanced Container Isolation (ECI) enabled, and with or without the "Expose daemon on tcp://localhost:2375 without TLS
nvd
CVE-2024-8696P2CRITICALCVSS 9.8fixed in 4.34.22024-09-12
CVE-2024-8696 [CRITICAL] CWE-79 CVE-2024-8696: A remote code execution (RCE) vulnerability via crafted extension publisher-url/additional-urls coul A remote code execution (RCE) vulnerability via crafted extension publisher-url/additional-urls could be abused by a malicious extension in Docker Desktop before 4.34.2.
nvd
CVE-2024-8695P2CRITICALCVSS 9.8fixed in 4.34.22024-09-12
CVE-2024-8695 [CRITICAL] CWE-79 CVE-2024-8695: A remote code execution (RCE) vulnerability via crafted extension description/changelog could be abu A remote code execution (RCE) vulnerability via crafted extension description/changelog could be abused by a malicious extension in Docker Desktop before 4.34.2.
nvd
CVE-2023-0625P3CRITICALCVSS 9.8fixed in 4.12.02023-09-25
CVE-2023-0625 [CRITICAL] CWE-79 CVE-2023-0625: Docker Desktop before 4.12.0 is vulnerable to RCE via a crafted extension description or changelog. Docker Desktop before 4.12.0 is vulnerable to RCE via a crafted extension description or changelog. This issue affects Docker Desktop: before 4.12.0.
nvd
CVE-2026-6406P3HIGHCVSS 8.8≥ 4.41.0, < 4.59.02026-05-22
CVE-2026-6406 [HIGH] CWE-863 CVE-2026-6406: The Docker CLI --use-api-socket flag bypasses Enhanced Container Isolation (ECI) restrictions in Doc The Docker CLI --use-api-socket flag bypasses Enhanced Container Isolation (ECI) restrictions in Docker Desktop. When ECI is enabled, Docker socket mounts from containers are denied unless explicitly allowed via the admin-settings configuration. However, the --use-api-socket flag adds the Docker socket mount via the HostConfig.Mounts field rather than t
cvelistv5nvd
CVE-2023-0626P3CRITICALCVSS 9.8fixed in 4.12.02023-09-25
CVE-2023-0626 [CRITICAL] CWE-94 CVE-2023-0626: Docker Desktop before 4.12.0 is vulnerable to RCE via query parameters in message-box route. This i Docker Desktop before 4.12.0 is vulnerable to RCE via query parameters in message-box route. This issue affects Docker Desktop: before 4.12.0.
nvd
CVE-2026-5843P3HIGHCVSS 8.6≥ 4.56.0, < 4.71.02026-05-22
CVE-2026-5843 [HIGH] CWE-829 CVE-2026-5843: The MLX inference backend in Docker Model Runner on macOS uses the MLX-LM library, which uncondition The MLX inference backend in Docker Model Runner on macOS uses the MLX-LM library, which unconditionally imports and executes arbitrary Python files from model directories via the model_file configuration field in config.json. When a model's config.json specifies a model_file pointing to a Python file, MLX-LM uses importlib to load and execute it with n
cvelistv5nvd
CVE-2023-5165P3HIGHCVSS 8.8≥ 4.13.0, < 4.23.02023-09-25
CVE-2023-5165 [HIGH] CWE-424 CVE-2023-5165: Docker Desktop before 4.23.0 allows an unprivileged user to bypass Enhanced Container Isolation (ECI Docker Desktop before 4.23.0 allows an unprivileged user to bypass Enhanced Container Isolation (ECI) restrictions via the debug shell which remains accessible for a short time window after launching Docker Desktop. The affected functionality is available for Docker Business customers only and assumes an environment where users are not granted local roo
nvd
CVE-2026-5817P3HIGHCVSS 8.6≥ 4.62.0, < 4.68.02026-05-22
CVE-2026-5817 [HIGH] CWE-829 CVE-2026-5817: The vllm-metal inference backend in Docker Model Runner on macOS unconditionally sets trust_remote_c The vllm-metal inference backend in Docker Model Runner on macOS unconditionally sets trust_remote_code=True when loading model tokenizers, and runs without sandboxing. This causes transformers.AutoTokenizer.from_pretrained() to import and execute arbitrary Python files included in any model pulled from an OCI registry, resulting in arbitrary code execu
cvelistv5nvd
CVE-2025-3224P3HIGHCVSS 7.8fixed in 4.41.02025-04-28
CVE-2025-3224 [HIGH] CWE-59 CVE-2025-3224: A vulnerability in the update process of Docker Desktop for Windows versions prior to 4.41.0 could a A vulnerability in the update process of Docker Desktop for Windows versions prior to 4.41.0 could allow a local, low-privileged attacker to escalate privileges to SYSTEM. During an update, Docker Desktop attempts to delete files and subdirectories under the path C:\ProgramData\Docker\config with high privileges. However, this directory often does not ex
nvd
CVE-2025-10657P3HIGHCVSS 8.7v4.46.02025-09-26
CVE-2025-10657 [HIGH] CWE-269 CVE-2025-10657: In a hardened Docker environment, with Enhanced Container Isolation ( ECI https://docs.docker.com/en In a hardened Docker environment, with Enhanced Container Isolation ( ECI https://docs.docker.com/enterprise/security/hardened-desktop/enhanced-container-isolation/ ) enabled, an administrator can utilize the command restrictions feature https://docs.docker.com/enterprise/security/hardened-desktop/enhanced-container-isolation/config/#command-restricti
nvd
CVE-2025-9164P3HIGHCVSS 8.8≤ 4.48.02025-10-27
CVE-2025-9164 [HIGH] CWE-427 CVE-2025-9164: Docker Desktop Installer.exe is vulnerable to DLL hijacking due to insecure DLL search order. The in Docker Desktop Installer.exe is vulnerable to DLL hijacking due to insecure DLL search order. The installer searches for required DLLs in the user's Downloads folder before checking system directories, allowing local privilege escalation through malicious DLL placement.This issue affects Docker Desktop: through 4.48.0.
nvd
CVE-2026-2664P3HIGHCVSS 7.8fixed in 4.62.02026-02-24
CVE-2026-2664 [HIGH] CWE-125 CVE-2026-2664: An out of bounds read vulnerability in the grpcfuse kernel module present in the Linux VM in Docker An out of bounds read vulnerability in the grpcfuse kernel module present in the Linux VM in Docker Desktop for Windows, Linux and macOS up to version 4.61.0 could allow a local attacker to cause an unspecified impact by writing to /proc/docker entries. The issue has been fixed in Docker Desktop 4.62.0 .
nvd
CVE-2023-1802P3HIGHCVSS 7.5≥ 4.17.0, < 4.18.02023-04-06
CVE-2023-1802 [HIGH] CWE-319 CVE-2023-1802: In Docker Desktop 4.17.x the Artifactory Integration falls back to sending registry credentials over In Docker Desktop 4.17.x the Artifactory Integration falls back to sending registry credentials over plain HTTP if the HTTPS health check has failed. A targeted network sniffing attack can lead to a disclosure of sensitive information. Only users who have Access Experimental Features enabled and have logged in to a private registry are affected.
nvd
CVE-2024-9348P3HIGHCVSS 8.9fixed in 4.34.32024-10-16
CVE-2024-9348 [HIGH] CWE-20 CVE-2024-9348: Docker Desktop before v4.34.3 allows RCE via unsanitized GitHub source link in Build view. Docker Desktop before v4.34.3 allows RCE via unsanitized GitHub source link in Build view.
nvd
CVE-2021-44719P3HIGHCVSS 8.4fixed in 4.5.02022-05-25
CVE-2021-44719 [HIGH] CVE-2021-44719: Docker Desktop 4.3.0 has Incorrect Access Control. Docker Desktop 4.3.0 has Incorrect Access Control.
nvd
CVE-2023-0633P3HIGHCVSS 7.8fixed in 4.12.02023-09-25
CVE-2023-0633 [HIGH] CWE-88 CVE-2023-0633: In Docker Desktop on Windows before 4.12.0 an argument injection to installer may result in local pr In Docker Desktop on Windows before 4.12.0 an argument injection to installer may result in local privilege escalation (LPE).This issue affects Docker Desktop: before 4.12.0.
nvd
CVE-2023-0627P3HIGHCVSS 7.8≥ 4.11.0, < 4.12.02023-09-25
CVE-2023-0627 [HIGH] CWE-501 CVE-2023-0627: Docker Desktop 4.11.x allows --no-windows-containers flag bypass via IPC response spoofing which may Docker Desktop 4.11.x allows --no-windows-containers flag bypass via IPC response spoofing which may lead to Local Privilege Escalation (LPE).This issue affects Docker Desktop: 4.11.X.
nvd
CVE-2023-0628P3HIGHCVSS 7.8fixed in 4.17.02023-03-13
CVE-2023-0628 [HIGH] CWE-77 CVE-2023-0628: Docker Desktop before 4.17.0 allows an attacker to execute an arbitrary command inside a Dev Environ Docker Desktop before 4.17.0 allows an attacker to execute an arbitrary command inside a Dev Environments container during initialization by tricking a user to open a crafted malicious docker-desktop:// URL.
nvd
CVE-2025-13743P3HIGHCVSS 7.5≥ 4.51.0, < 4.54.02025-12-09
CVE-2025-13743 [HIGH] CWE-532 CVE-2025-13743: Docker Desktop diagnostics bundles were found to include expired Hub PATs in log output due to error Docker Desktop diagnostics bundles were found to include expired Hub PATs in log output due to error object serialization. This poses a risk of leaking sensitive information in exported diagnostics, especially when access denied errors occurred.
nvd
Docker Desktop vulnerabilities | cvebase