CVE-2023-5165: 
Docker Desktop vulnerability analysis and mitigation

Docker Desktop versions from 4.13.0 before 4.23.0 contain a vulnerability (CVE-2023-5165) that allows an unprivileged user to bypass Enhanced Container Isolation (ECI) restrictions via the debug shell which remains accessible for a short time window after launching Docker Desktop. This vulnerability specifically affects Docker Business customers in environments where users are not granted local root or Administrator privileges (Docker Release Notes).

The vulnerability is classified with CWE-862 (Missing Authorization) and CWE-424 (Improper Protection of Alternate Path). It has received a CVSS v3.1 base score of 8.8 (HIGH) from NIST with vector string CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H, while Docker Inc. assessed it with a score of 7.1 (HIGH) and vector string CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N (NVD).

The vulnerability affects Docker Desktop's Enhanced Container Isolation feature, which is available exclusively for Docker Business customers. When exploited, it allows unauthorized access to privileged functions through the debug shell during a brief window after Docker Desktop launches, potentially compromising the security boundaries established by ECI (Docker Release Notes).

The vulnerability has been fixed in Docker Desktop 4.23.0. Users running affected versions (4.13.0 to 4.22.x) should upgrade to version 4.23.0 or later to mitigate this security issue (Docker Release Notes).