Vulnerabilities > Docker > Docker Desktop > 4.17.0
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-09-25 | CVE-2023-5165 | Missing Authorization vulnerability in Docker Desktop Docker Desktop before 4.23.0 allows an unprivileged user to bypass Enhanced Container Isolation (ECI) restrictions via the debug shell which remains accessible for a short time window after launching Docker Desktop. | 8.8 |
| 2023-09-25 | CVE-2023-5166 | Unspecified vulnerability in Docker Desktop Docker Desktop before 4.23.0 allows Access Token theft via a crafted extension icon URL. This issue affects Docker Desktop: before 4.23.0. | 6.5 |