Vulnerabilities > CVE-2024-8696 - Unspecified vulnerability in Docker Desktop

CVSS 9.8 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

docker

critical

NVD

Published: 2024-09-12

Updated: 2024-09-13

Summary

A remote code execution (RCE) vulnerability via crafted extension publisher-url/additional-urls could be abused by a malicious extension in Docker Desktop before 4.34.2.

Vulnerable Configurations

Part	Description	Count
Application	Docker Docker Desktop - Docker Desktop 2.0.0.0 Docker Desktop 2.0.0.1 Docker Desktop 2.0.0.2 Docker Desktop 2.0.0.3 Docker Desktop 2.0.0.4 Docker Desktop 2.0.0.5 Docker Desktop 2.0.0.6 Docker Desktop 2.0.1.0 Docker Desktop 2.0.2.0 Docker Desktop 2.0.2.1 Docker Desktop 2.0.3.0 Docker Desktop 2.0.4.0 Docker Desktop 2.0.4.1 Docker Desktop 2.0.5.0 Docker Desktop 2.1.0.0 Docker Desktop 2.1.0.1 Docker Desktop 2.1.0.2 Docker Desktop 2.1.0.3 Docker Desktop 2.1.0.4 Docker Desktop 2.1.0.5 Docker Desktop 2.1.0.6 Docker Desktop 2.1.0.7 Docker Desktop 2.1.0.8 Docker Desktop 2.1.0.9 Docker Desktop 2.1.1.0 Docker Desktop 2.1.2.0 Docker Desktop 2.1.3.0 Docker Desktop 2.1.4.0 Docker Desktop 2.1.5.0 Docker Desktop 2.1.6.1 Docker Desktop 2.1.7.0 Docker Desktop 2.2.0.0 Docker Desktop 2.2.0.3 Docker Desktop 2.2.0.4 Docker Desktop 2.2.1.0 Docker Desktop 2.2.2.0 Docker Desktop 3.0.0 Docker Desktop 3.0.4 Docker Desktop 3.1.0 Docker Desktop 3.2.0 Docker Desktop 3.2.1 Docker Desktop 3.2.2 Docker Desktop 3.3.0 Docker Desktop 3.3.1 Docker Desktop 3.3.2 Docker Desktop 3.3.3 Docker Desktop 3.4.0 Docker Desktop 3.5.0 Docker Desktop 3.5.1 Docker Desktop 3.5.2 Docker Desktop 3.6.0 Docker Desktop 4.0.0 Docker Desktop 4.0.1 Docker Desktop 4.1.0 Docker Desktop 4.1.1 Docker Desktop 4.2.0 Docker Desktop 4.3.0 Docker Desktop 4.3.1 Docker Desktop 4.3.2 Docker Desktop 4.4.2 Docker Desktop 4.4.3 Docker Desktop 4.4.4 Docker Desktop 4.5.0 Docker Desktop 4.5.1 Docker Desktop 4.6.0 Docker Desktop 4.6.1 Docker Desktop 4.7.0 Docker Desktop 4.7.1 Docker Desktop 4.8.0 Docker Desktop 4.9.0 Docker Desktop 4.9.1 Docker Desktop 4.10.0 Docker Desktop 4.10.1 Docker Desktop 4.11.0 Docker Desktop 4.11.1 Docker Desktop 4.12.0 Docker Desktop 4.13.0 Docker Desktop 4.13.1 Docker Desktop 4.14.0 Docker Desktop 4.14.1 Docker Desktop 4.15.0 Docker Desktop 4.16.0 Docker Desktop 4.16.1 Docker Desktop 4.16.2 Docker Desktop 4.16.3 Docker Desktop 4.17.0 Docker Desktop 4.17.1 Docker Desktop 4.18.0 Docker Desktop 4.19.0 Docker Desktop 4.20.0 Docker Desktop 4.20.1 Docker Desktop 4.21.0 Docker Desktop 4.21.1 Docker Desktop 4.22.0 Docker Desktop 4.22.1 Docker Desktop 4.23.0 Docker Desktop 4.24.0 Docker Desktop 4.24.1 Docker Desktop 4.24.2 Docker Desktop 4.25.0 Docker Desktop 4.25.1 Docker Desktop 4.25.2 Docker Desktop 4.26.0 Docker Desktop 4.26.1 Docker Desktop 4.27.0 Docker Desktop 4.27.1 Docker Desktop 4.27.2 Docker Desktop 4.28.0 Docker Desktop 4.29.0 Docker Desktop 4.30.0 Docker Desktop 4.31.0 Docker Desktop 4.31.1 Docker Desktop 4.32.0	165

References

https://docs.docker.com/desktop/release-notes/#4342