Vulnerabilities > Docker > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-05-25 | CVE-2021-44719 | Unspecified vulnerability in Docker Desktop Docker Desktop 4.3.0 has Incorrect Access Control. | 8.4 |
| 2022-03-25 | CVE-2022-26659 | Link Following vulnerability in Docker Desktop Docker Desktop installer on Windows in versions before 4.6.0 allows an attacker to overwrite any administrator writable files by creating a symlink in place of where the installer writes its log file. | 7.1 |
| 2022-02-19 | CVE-2022-25365 | Unspecified vulnerability in Docker Docker Desktop before 4.5.1 on Windows allows attackers to move arbitrary files. | 7.8 |
| 2021-10-04 | CVE-2021-41092 | Docker CLI is the command line interface for the docker container runtime. | 7.5 |
| 2021-08-12 | CVE-2021-37841 | Incorrect Permission Assignment for Critical Resource vulnerability in Docker Desktop Docker Desktop before 3.6.0 suffers from incorrect access control. | 7.8 |
| 2021-01-15 | CVE-2021-3162 | Improper Certificate Validation vulnerability in Docker Docker Desktop Community before 2.5.0.0 on macOS mishandles certificate checking, leading to local privilege escalation. | 7.8 |
| 2020-07-13 | CVE-2020-14300 | Improper Check for Dropped Privileges vulnerability in multiple products The docker packages version docker-1.13.1-108.git4ef4b30.el7 as released for Red Hat Enterprise Linux 7 Extras via RHBA-2020:0053 (https://access.redhat.com/errata/RHBA-2020:0053) included an incorrect version of runc that was missing multiple bug and security fixes. | 8.8 |
| 2020-07-13 | CVE-2020-14298 | Improper Check for Dropped Privileges vulnerability in multiple products The version of docker as released for Red Hat Enterprise Linux 7 Extras via RHBA-2020:0053 advisory included an incorrect version of runc missing the fix for CVE-2019-5736, which was previously fixed via RHSA-2019:0304. | 8.8 |
| 2020-06-27 | CVE-2020-15360 | Missing Authorization vulnerability in Docker Desktop 2.3.0.3 com.docker.vmnetd in Docker Desktop 2.3.0.3 allows privilege escalation because of a lack of client verification. | 7.8 |
| 2020-06-05 | CVE-2020-11492 | Race Condition vulnerability in Docker Desktop An issue was discovered in Docker Desktop through 2.2.0.5 on Windows. | 7.8 |