Security Advisory

CVE-2019-15752

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2019-08-28 20:24:33

Last updated 2025-10-21 23:45:31

Assigner mitre

State PUBLISHED

Description

Docker Desktop Community Edition before 2.1.0.1 allows local users to gain privileges by placing a Trojan horse docker-credential-wincred.exe file in %PROGRAMDATA%DockerDesktopversion-bin as a low-privilege user, and then waiting for an admin or service user to authenticate with Docker, restart Docker, or run docker login to force the command.

← Browse all CVEs View on cve.org ↗