docker Desktop Vulnerabilities
Docker Desktop vulnerabilities.
Vulnerability Published:
ποΈ Published
- Anytime
Sort By:
ποΈ Published Date
- Descending
Docker Desktop Vulnerability Allows Unauthorized Access to Docker Engine API
CVE-2025-9074DockerDocker Desktopπ₯ππΎπ‘9.3CRITICALSensitive Information Disclosure in Docker Desktop by Docker, Inc.
CVE-2025-6587DockerDocker Desktop5.2MEDIUMSensitive Information Exposure in Docker Desktop by Docker
CVE-2025-3911DockerDocker Desktop5.2MEDIUMDocker Desktop Registry Access Management Vulnerability by Docker Inc.
CVE-2025-4095DockerDocker Desktop4.3MEDIUMElevation of Privilege Vulnerability in Docker Desktop for Windows by Docker Inc.
CVE-2025-3224DockerDocker Desktop7.3HIGHSensitive Information Disclosure Vulnerability in Docker Desktop by Docker
CVE-2025-1696DockerDocker Desktop5.2MEDIUMDocker Desktop before v4.34.3 allows RCE via unsanitized GitHub source link in Build view
CVE-2024-9348DockerDocker DesktopRemote Code Execution Vulnerability in Docker Desktop by Docker Inc.
CVE-2024-8695DockerDesktop9.8CRITICALRemote Code Execution Vulnerability in Docker Desktop by Docker, Inc.
CVE-2024-8696DockerDesktop9.8CRITICALDocker Desktop Fixes Container Breakout Vulnerability in v4.29.0
CVE-2024-6222Docker Inc.Docker DesktopπΎπ°7HIGHDenial-of-Service Vulnerability in Docker Desktop for Windows
CVE-2024-5652Docker Inc.Docker Desktopπ°5.5MEDIUMDocker Desktop before 4.12.0 is vulnerable to RCE via a crafted extension description or changelog
CVE-2023-0625Docker Inc.Docker Desktop8HIGHDocker Desktop before 4.12.0 is vulnerable to RCE via query parameters in message-box route
CVE-2023-0626Docker Inc.Docker Desktop8HIGHDocker Desktop 4.11.x allows --no-windows-containers flag bypass
CVE-2023-0627Docker Inc.Docker Desktop6.7MEDIUMIn Docker Desktop on Windows before 4.12.0 an argument injection to installer may result in LPE
CVE-2023-0633Docker Inc.Docker Desktop7.2HIGHDocker Desktop before 4.23.0 allows Enhanced Container Isolation bypass via debug shell
CVE-2023-5165Docker Inc.Docker Desktop7.1HIGHDocker Desktop before 4.23.0 allows Access Token theft via a crafted extension icon URL
CVE-2023-5166Docker Inc.Docker Desktop8HIGHPrivilege Escalation Vulnerability in Docker Desktop for Windows
CVE-2022-31647DockerDesktop7.1HIGHSymlink Attack Vulnerability in Docker Desktop for Windows
CVE-2022-34292DockerDesktop7.1HIGHFile Manipulation Vulnerability in Docker Desktop for Windows
CVE-2022-37326DockerDesktop7.8HIGHSymlink Vulnerability in Docker Desktop for Windows by Docker
CVE-2022-38730DockerDesktop6.3MEDIUMIn Docker Desktop 4.17.x the Artifactory Integration falls back to sending registry credentials over plain HTTP if the HTTPS health check has failed
CVE-2023-1802DockerDocker Desktop5.9MEDIUMDocker Desktop before 4.17.0 allows an attacker to execute an arbitrary command inside a Dev Environments container during initialization by tricking a user to open a crafted malicious docker-desktop:// URL
CVE-2023-0628Docker Inc.Docker Desktop6.1MEDIUMDocker Desktop before 4.17.0 allows an unprivileged user to bypass Enhanced Container Isolation restrictions via the raw Docker socket and launch privileged containers
CVE-2023-0629Docker Inc.Docker Desktop7.1HIGHAccess Control Flaw in Docker Desktop by Docker Inc.
CVE-2021-44719DockerDocker Desktop8.4HIGH