CPE-14D67563-01FA-4E87-9FC8-477DD17E5005 Detail

CPE Details

Docker Desktop 4.3.1

Vendor

docker

Product

docker_desktop

Version

4.3.1

Created

2022-01-19
14h49 +00:00

Modified

2022-01-19
15h33 +00:00

Official links

CPE NVD

Alerte pour un CPE

Stay informed of any changes for a specific CPE.

Notifications manage

List of Notifications

Alerte pour un CPE

Stay informed of any changes for a specific CPE.

Parameters

You can specify a title that will be retrieved in the alerts that will be sent out.

CPE ID

Planning

Month

Next run calculation

Day

Weekday

Hour

Minute

Creation date

Last execution

Next execution

Functionality requiring a connection

This feature, which allows you to receive alerts, is only active when you are logged into your account.

CPE Name: cpe:2.3:a:docker:docker_desktop:4.3.1:::::::*

Informations

Vendor

docker

Product

docker_desktop

Version

4.3.1

Related CVE

Open and find in CVE List

CVE ID	Published	Description	Score	Severity
CVE-2023-0633	2023-09-25 15h32 +00:00	In Docker Desktop on Windows before 4.12.0 an argument injection to installer may result in local privilege escalation (LPE).This issue affects Docker Desktop: before 4.12.0.	7.8	High
CVE-2023-0626	2023-09-25 15h31 +00:00	Docker Desktop before 4.12.0 is vulnerable to RCE via query parameters in message-box route. This issue affects Docker Desktop: before 4.12.0.	9.8	Critical
CVE-2023-0625	2023-09-25 15h31 +00:00	Docker Desktop before 4.12.0 is vulnerable to RCE via a crafted extension description or changelog. This issue affects Docker Desktop: before 4.12.0.	9.8	Critical
CVE-2023-5166	2023-09-25 15h30 +00:00	Docker Desktop before 4.23.0 allows Access Token theft via a crafted extension icon URL. This issue affects Docker Desktop: before 4.23.0.	8	High
CVE-2023-0628	2023-03-13 11h16 +00:00	Docker Desktop before 4.17.0 allows an attacker to execute an arbitrary command inside a Dev Environments container during initialization by tricking a user to open a crafted malicious docker-desktop:// URL.	7.8	High
CVE-2021-44719	2022-05-25 13h31 +00:00	Docker Desktop 4.3.0 has Incorrect Access Control.	8.4	High
CVE-2022-26659	2022-03-25 19h50 +00:00	Docker Desktop installer on Windows in versions before 4.6.0 allows an attacker to overwrite any administrator writable files by creating a symlink in place of where the installer writes its log file. Starting from version 4.6.0, the Docker Desktop installer, when run elevated, will write its log files to a location not writable by non-administrator users.	7.1	High
CVE-2022-23774	2022-02-01 04h30 +00:00	Docker Desktop before 4.4.4 on Windows allows attackers to move arbitrary files.	5.3	Medium
CVE-2021-45449	2022-01-12 18h29 +00:00	Docker Desktop version 4.3.0 and 4.3.1 has a bug that may log sensitive information (access token or password) on the user's machine during login. This only affects users if they are on Docker Desktop 4.3.0, 4.3.1 and the user has logged in while on 4.3.0, 4.3.1. Gaining access to this data would require having access to the user’s local files.	5.5	Medium

Docker Desktop 4.3.1

CPE Details

CPE Name: cpe:2.3:a:docker:docker_desktop:4.3.1:*:*:*:*:*:*:*

Informations

Vendor

Product

Version

Related CVE

CPE Name: cpe:2.3:a:docker:docker_desktop:4.3.1:::::::*