Elevation of Privilege Vulnerability in Docker Desktop for Windows by Docker Inc.
CVE-2025-3224

7.3HIGH

Key Information:

Vendor: Docker
Status: Docker Desktop
Vendor: CVE Published:; 28 April 2025

What is CVE-2025-3224?

A security issue in Docker Desktop for Windows versions before 4.41.0 allows local attackers with low privileges to escalate their user permissions to SYSTEM. The flaw occurs during the update process, wherein Docker Desktop attempts to remove files and directories from C:\ProgramData\Docker\config using elevated privileges. Since this directory may not be present by default, a normal user can create a malicious folder structure at this path. This manipulation enables the low-privileged attacker to cause the update mechanism to delete or alter arbitrary system files, resulting in potential escalation of privileges.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Docker Desktop Windows 0 < 4.41.0

References

https://www.zerodayinitiative.com/blog/2022/3/16/abusing-...

CVSS V4

Score:

7.3

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

High

Attack Required:

Physical

Privileges Required:

Undefined

User Interaction:

Unknown

Timeline

Vulnerability published
Apr 28, 2025
Vulnerability Reserved
Apr 3, 2025

Credit

Dong-uk Kim, KAIST Hacking Lab

JSON

Docker

What is CVE-2025-3224?

Human OS v1.0: Ageing Is an Unpatched Zero-Day Vulnerability.

Affected Version(s)

References

CVSS V4

Timeline

Credit

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.