Privilege Escalation Vulnerability in Docker Desktop for Windows
CVE-2022-31647

7.1HIGH

Key Information:

Vendor: Docker
Status: Desktop
Vendor: CVE Published:; 27 April 2023

What is CVE-2022-31647?

A security vulnerability in Docker Desktop for Windows prior to version 4.6.0 allows attackers to exploit the hyperv/destroy dockerBackendV2 API. By manipulating symlinks in the DataFolder parameter, an attacker can delete arbitrary files, potentially leading to further system compromises. This issue is distinct from other related vulnerabilities, underscoring the importance of maintaining updated software and being aware of potential security risks.

References

https://docs.docker.com/desktop/release-notes/#docker-des...

https://www.cyberark.com/resources/threat-research-blog/b...

CVSS V3.1

Score:

7.1

Severity:

HIGH

Confidentiality:

None

Integrity:

High

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 27, 2023
Vulnerability Reserved
May 25, 2022