CVE-2023-0628

Published: 2023-03-13T12:15Z

Last Modified: 2024-11-21T07:37Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

Docker Desktop before 4.17.0 allows an attacker to execute an arbitrary command inside a Dev Environments container during initialization by tricking a user to open a crafted malicious docker-desktop:// URL. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt