
Cloud Vulnerability DB
A community-led vulnerabilities database
A vulnerability in the update process of Docker Desktop for Windows versions prior to 4.41.0 allows local, low-privileged attackers to escalate privileges to SYSTEM. The vulnerability exists because during an update, Docker Desktop attempts to delete files and subdirectories under C:\ProgramData\Docker\config with high privileges, but this directory often does not exist by default and C:\ProgramData\ allows normal users to create new directories (NVD).
The vulnerability stems from improper privilege management and link resolution before file access. By creating a malicious Docker\config folder structure at C:\ProgramData, an attacker can force the privileged update process to delete or manipulate arbitrary system files. The vulnerability has been assigned a CVSS v4.0 base score of 7.3 (HIGH) with the vector string CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:A/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H. The vulnerability is tracked under CWE-59 (Improper Link Resolution Before File Access) and CWE-269 (Improper Privilege Management) (NVD).
If successfully exploited, this vulnerability allows a local attacker to elevate their privileges to SYSTEM level on affected Windows systems. This enables complete system compromise, as SYSTEM privileges provide the highest level of access on a Windows machine (NVD).
Users should upgrade to Docker Desktop for Windows version 4.41.0 or later to address this vulnerability. No alternative workarounds have been publicly disclosed (NVD).
Source: This report was generated using AI
Free Vulnerability Assessment
Evaluate your cloud security practices across 9 security domains to benchmark your risk level and identify gaps in your defenses.
Get a personalized demo
"Best User Experience I have ever seen, provides full visibility to cloud workloads."
"Wiz provides a single pane of glass to see what is going on in our cloud environments."
"We know that if Wiz identifies something as critical, it actually is."