CVE-2023-0628

Publication date

2023-03-13 11:16:30

Family

Docker

State

PUBLISHED

Description

Docker Desktop before 4.17.0 allows an attacker to execute an arbitrary command inside a Dev Environments container during initialization by tricking a user to open a crafted malicious docker-desktop:// URL.