By the Year
In 2022 there have been 1 vulnerability in Docker Desktop with an average score of 5.5 out of ten. Docker Desktop did not have any published security vulnerabilities last year. That is, 1 more vulnerability have already been reported in 2022 as compared to last year.
It may take a day or so for new Docker Desktop vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Docker Desktop Security Vulnerabilities
Docker Desktop version 4.3.0 and 4.3.1 has a bug
5.5 - Medium
- January 12, 2022
Docker Desktop version 4.3.0 and 4.3.1 has a bug that may log sensitive information (access token or password) on the user's machine during login. This only affects users if they are on Docker Desktop 4.3.0, 4.3.1 and the user has logged in while on 4.3.0, 4.3.1. Gaining access to this data would require having access to the users local files.
Insertion of Sensitive Information into Log File
com.docker.vmnetd in Docker Desktop 184.108.40.206
7.8 - High
- June 27, 2020
com.docker.vmnetd in Docker Desktop 220.127.116.11 allows privilege escalation because of a lack of client verification.