THREATINT

We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Fathom (Privacy friendly web analytics)
Zendesk (Helpdesk and Chat)

Ok

Home | EN
Support
CVE
PUBLISHED

CVE-2024-5652

In Docker Desktop on Windows before v4.31.0 allows a user in the docker-users group to cause a Windows Denial-of-Service through the exec-path Docker daemon config option in Windows containers mode

AssignerDocker
Reserved2024-06-05
Published2024-07-09
Updated2024-07-09

Description

In Docker Desktop on Windows before v4.31.0 allows a user in the docker-users group to cause a Windows Denial-of-Service through the exec-path Docker daemon config option in Windows containers mode.



MEDIUM: 6.1CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H

Product status

Default status
unaffected

Any version before v4.31.0
affected

Credits

Hashim Jawad ( @ihack4falafel) finder

Trend Micro Zero Day Initiative finder

References

https://docs.docker.com/desktop/release-notes/#4310 release-notes

cve.org CVE-2024-5652

nvd.nist.gov CVE-2024-5652

Download JSON

Share this page
https://cve.threatint.com/CVE/CVE-2024-5652