Arbitrary File Manipulation and Privilege Escalation in Docker Desktop for Windows

Arbitrary File Manipulation and Privilege Escalation in Docker Desktop for Windows

CVE-2022-37326 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Docker Desktop for Windows before 4.6.0 allows attackers to delete (or create) any file through the dockerBackendV2 windowscontainers/start API by controlling the pidfile field inside the DaemonJSON field in the WindowsContainerStartRequest class. This can indirectly lead to privilege escalation.

Learn more about our Cis Benchmark Audit For Desktop Software.