Vulnerabilities > Docker > Docker Desktop > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-09-25 | CVE-2023-5166 | Unspecified vulnerability in Docker Desktop Docker Desktop before 4.23.0 allows Access Token theft via a crafted extension icon URL. This issue affects Docker Desktop: before 4.23.0. | 6.5 |
| 2022-02-01 | CVE-2022-23774 | Unspecified vulnerability in Docker Desktop Docker Desktop before 4.4.4 on Windows allows attackers to move arbitrary files. | 5.3 |
| 2022-01-12 | CVE-2021-45449 | Information Exposure Through Log Files vulnerability in Docker Desktop 4.3.0/4.3.1 Docker Desktop version 4.3.0 and 4.3.1 has a bug that may log sensitive information (access token or password) on the user's machine during login. | 5.5 |