COOEY // HUBcompliance · community · intelligence

Exposures › CVE-2019-15752

CVE-2019-15752

Severity
high · on CISA KEV actively exploited
Source
CISA-KEV · kev
Published
2021-11-03
Reference
https://nvd.nist.gov/vuln/detail/CVE-2019-15752
⌖ exploited in the wild shame 50/100 exploited-in-wild

Docker Desktop Community Edition contains a vulnerability that may allow local users to escalate privileges by placing a trojan horse docker-credential-wincred.exe file in %PROGRAMDATA%\DockerDesktop\version-bin\.

Players implicated

Docker · vendorDesktop Community Edition · product

Description

Docker Desktop Community Edition contains a vulnerability that may allow local users to escalate privileges by placing a trojan horse docker-credential-wincred.exe file in %PROGRAMDATA%\DockerDesktop\version-bin\.

Affected FedRAMP products 0 in the catalog

No correlated FedRAMP products.