ZDNet

Privilege escalation vulnerability patched in Docker Desktop for Windows

On Friday, cybersecurity researchers from Pen Test Partners publicly disclosed the problem, a privilege escalation vulnerability buried in how the software uses pipes. The vulnerability, tracked as ...
heise online

Docker: Rights escalation gap in Desktop for Windows

During an update, Docker Desktop attempts to delete files and subfolders in the path “C:\ProgramData\Docker\config” with elevated rights. However, this directory does not usually exist by default. “C: ...