CVE-2022-34292

Published: 2023-04-27T20:15Z

Last Modified: 2025-01-31T20:15Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

Docker Desktop for Windows before 4.6.0 allows attackers to overwrite any file through a symlink attack on the hyperv/create dockerBackendV2 API by controlling the DataFolder parameter for DockerDesktop.vhdx, a similar issue to CVE-2022-31647. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt