Vulnerabilities > Docker > Docker Desktop > Critical

DATE CVE VULNERABILITY TITLE RISK
2023-09-25 CVE-2023-0626 Code Injection vulnerability in Docker Desktop
Docker Desktop before 4.12.0 is vulnerable to RCE via query parameters in message-box route. This issue affects Docker Desktop: before 4.12.0.
network
low complexity
docker CWE-94
critical
 9.8
9.8
2023-09-25 CVE-2023-0625 Code Injection vulnerability in Docker Desktop
Docker Desktop before 4.12.0 is vulnerable to RCE via a crafted extension description or changelog. This issue affects Docker Desktop: before 4.12.0.
network
low complexity
docker CWE-94
critical
 9.8
9.8