CVE-2023-5165

Name of the Vulnerable Software and Affected Versions Docker Desktop versions 4.13.0 through 4.22.x

Description The issue is related to insufficient authorization procedures in Docker Desktop, allowing an unprivileged user to bypass Enhanced Container Isolation (ECI) restrictions. This can be achieved via the debug shell, which remains accessible for a short time after launching Docker Desktop. The affected functionality is available for Docker Business customers only, in environments where users are not granted local root or Administrator privileges.

Recommendations For Docker Desktop versions 4.13.0 through 4.22.x, update to Docker Desktop 4.23.0 to resolve the issue. As a temporary workaround, consider restricting access to the debug shell until a patch is available.