Vulnerabilities > CVE-2020-15360 - Missing Authorization vulnerability in Docker Desktop 2.3.0.3

047910
CVSS 4.6 - MEDIUM
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
local
low complexity
docker
CWE-862
NVD
Published: 2020-06-27
Updated: 2022-07-12

Summary

com.docker.vmnetd in Docker Desktop 2.3.0.3 allows privilege escalation because of a lack of client verification.

Vulnerable Configurations

Part Description Count
Application
Docker
1

Common Weakness Enumeration (CWE)

References