7.2
CVSSv2

CVE-2020-10665

Published: 18/03/2020 Updated: 02/07/2020
CVSS v2 Base Score: 7.2 | Impact Score: 10 | Exploitability Score: 3.9
Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C

Vulnerability Summary

Docker Desktop allows local privilege escalation to NT AUTHORITY\SYSTEM because it mishandles the collection of diagnostics with Administrator privileges, leading to arbitrary DACL permissions overwrites and arbitrary file writes. This affects Docker Desktop Enterprise prior to 2.1.0.9, Docker Desktop for Windows Stable prior to 2.2.0.4, and Docker Desktop for Windows Edge prior to 2.2.2.0.

Vulnerability Trend

Affected Products

Vendor Product Versions
DockerDesktop-, 2.0.0.0, 2.0.0.1, 2.0.0.2, 2.0.0.3, 2.0.0.4, 2.0.0.5, 2.0.0.6, 2.0.1.0, 2.0.2.0, 2.0.2.1, 2.0.3.0, 2.0.4.0, 2.0.4.1, 2.0.5.0, 2.1.0.0, 2.1.0.1, 2.1.0.2, 2.1.0.3, 2.1.0.4, 2.1.0.5, 2.1.0.6, 2.1.0.7, 2.1.0.8, 2.1.1.0, 2.1.2.0, 2.1.3.0, 2.1.4.0, 2.1.5.0, 2.1.6.1, 2.1.7.0, 2.2.0.0, 2.2.0.3, 2.2.1.0

Github Repositories

Branch: master Go to file Clone Clone with HTTPS Use Git or checkout with SVN using the web URL. Download ZIP Downloading Want to be notified of new releases in spaceraccoon/CVE-2020-10665? Sign in Sign up Launching GitHub Desktop If nothing happens, download GitHub Desktop and try again. Go back Launching GitHub Desktop If nothing happens, download GitHub Desktop and try again. Go back Launching Xcode If nothing happens, download Xcode and try again. Go back Launching Visual Studio If nothing happens, download the GitHub extension for Visual Studio and try again. Go back Latest commit spaceraccoon committed 3b8e6a4 6 minutes ago … Initial commit Git stats 1 commits 1 branch 0 tags Files Permalink Failed to load latest commit information. Type Name Latest commit message Commit time .gitignore Initial commit 6 minutes ago README.md Initial commit 6 minutes ago View code README.md CVE-2020-10665 About No description, website, or topics provided. Resources Readme

Branch: master Go to file Clone Clone with HTTPS Use Git or checkout with SVN using the web URL. Download ZIP Downloading Want to be notified of new releases in xqx12/daily-info? Sign in Sign up Launching GitHub Desktop If nothing happens, download GitHub Desktop and try again. Go back Launching GitHub Desktop If nothing happens, download GitHub Desktop and try again. Go back Launching Xcode If nothing happens, download Xcode and try again. Go back Launching Visual Studio If nothing happens, download the GitHub extension for Visual Studio and try again. Go back Latest commit debian-vpn committed 92a9518 2 minutes ago … update techinfo, 2020-06-28 20:10:05 Git stats 68 commits 1 branch 0 tags Files Permalink Failed to load latest commit information. Type Name Latest commit message Commit time readme init the repo 2 days ago readme.md update techinfo, 2020-06-28 20:10:05 2 minutes ago tech_info_202006.md update techinfo, 2020-06-28 20:10:05 2 minutes ago tech_info_20200626.md update techinfo, 2020-06-26 23:47:04 2 days ago tech_info_20200627.md update techinfo, 2020-06-27 21:58:48 22 hours ago tech_info_20200628.md update techinfo, 2020-06-28 20:10:05 2 minutes ago View code readme.md 互联网安全 推荐 ts title url 20200628 BurpCrypto: 万能网站密码爆破测试工具 https://www.freebuf.com/sectool/238272.html 20200628 云安全市场现状与需求调研 , 给AWS云找找“茬”(上) https://www.freebuf.com/articles/paper/241272.html 20200628 14多万条学生的个人信息被泄露 https://www.freebuf.com/news/241309.html 20200628 臭名昭著的Fxmsp如何一步步成为“暗网隐形的神” https://www.freebuf.com/news/241168.html 20200628 挖洞经验 , 利用系列视频创建功能删除任意Facebook平台图片($10,000) https://www.freebuf.com/vuls/239236.html 20200628 “维基解密”创始人被追加起诉与黑客合作窃密,或将面临175年监禁 https://www.freebuf.com/news/241311.html 20200628 「京麒安全沙龙」拍了拍你 , 快来康康6月30日的直播活动都有啥! https://www.freebuf.com/open/241099.html 20200628 云WAF如何防止敏感信息泄漏 https://www.freebuf.com/articles/web/239300.html 20200628 FreeBuf早报|Apple iOS 14和macOS Big Sur中添加了新的隐私功能;VirusTotal增加了Cynet基于人工智能的恶意软件检测;德法院裁定Facebook需遵守监管命令 https://www.freebuf.com/news/241133.html 20200628 某租车系统Java代码审计之后台注入漏洞分析 https://www.freebuf.com/vuls/238175.html 玄武实验室 推荐 ts title url 20200628 通过学习挖掘DNS MX记录来以获取流行电子邮件的安全体系研究。 https://medium.com/@jason_trost/mining-dns-mx-records-for-fun-and-profit-7a069da9ee2d 20200628 FreeDVDBoot-通过对其DVD播放器入侵PlayStation 2安全研究。 https://cturt.github.io/freedvdboot.html 20200628 APC系列:KiUserApcDispatcher演变与Wow64技术的研究。 https://repnz.github.io/posts/apc/wow64-user-apc/ 20200628 在macOS平台下使用Swift做安全开发研究。 https://medium.com/red-teaming-with-a-blue-team-mentaility/using-macos-internals-for-post-exploitation-b5faaa11e121?source=social.tw&_branch_match_id=805938169909134436 20200628 如何在AWS Lambda上使用Swift进行开发 https://github.com/swift-server/swift-aws-lambda-runtime/ 20200628 微软发布免费文件恢复工具 https://support.microsoft.com/en-in/help/4538642/windows-10-restore-lost-files 20200628 linux内核调试视频教程第三节 https://www.youtube.com/watch?v=unizGCcZg3Y&feature=youtu.be 20200628 使用syzkaller对驱动程序进行Fuzzing https://lwn.net/Articles/824598/rss 20200628 Windows10(1909)中超300个系统dll可被DLL劫持攻击 https://www.bleepingcomputer.com/news/security/almost-300-windows-10-executables-vulnerable-to-dll-hijacking/ 20200628 使用QASan对二进制文件进行Fuzzing以检查内存安全 https://sec.today/pulses/fc209569-dfee-4cac-af72-ba9e7bac71ac/ 20200628 Linux下的网络数据包和流量拦截器,可进行ARP欺骗和网络窃听 https://sec.today/pulses/922091b9-a0ca-44ff-9c4c-2904e62cdf77/ 20200628 使用QASan对二进制文件进行Fuzzing以检查内存安全 https://andreafioraldi.github.io/assets/qasan-secdev20.pdf 20200628 Linux下的网络数据包和流量拦截器,可进行ARP欺骗和网络窃听 https://www.kitploit.com/2020/06/espionage-network-packet-and-traffic.html 安全维基 推荐 ts title url 20200628 APT的思考: PowerShell命令混淆高级对抗 https://mp.weixin.qq.com/s/Sg0LK8emSWP1m-yds4VGrQ 20200628 SPIDER: Enabling Fast Patch Propagation in Related Softwar... https://securitygossip.com/blog/2020/05/26/spider-enabling-fast-patch-propagation-in-related-software-repositories/ 20200628 Recovering Credentials from a Process inside a Docker Cont... https://blog.pentesteracademy.com/recovering-credentials-from-a-docker-container-process-using-docker-checkpoint-and-gdb-ea22e8898d2b 20200628 Java Deserialization Exploitation With Customized Ysoseria... https://rhinosecuritylabs.com/research/java-deserializationusing-ysoserial/ 20200628 Using SQL Injection to perform SSRF/XSPA attacks https://ibreak.software/2020/06/using-sql-injection-to-perform-ssrf-xspa-attacks/ 20200628 Mining DNS MX Records for Fun and Profit https://medium.com/@jason_trost/mining-dns-mx-records-for-fun-and-profit-7a069da9ee2d CVE Github 推荐 ts cve_id title url cve_detail 20200628T20:49:46Z CVE-2020-10665 POC for CVE-2020-10665 Docker Desktop Local Privilege Escalation https://github.com/spaceraccoon/CVE-2020-10665 MYMEMORY WARNING: YOU USED ALL AVAILABLE FREE TRANSLATIONS FOR TODAY. NEXT AVAILABLE IN 22 HOURS 50 MINUTES 53 SECONDSVISIT HTTPS://MYMEMORY.TRANSLATED.NET/DOC/USAGELIMITS.PHP TO TRANSLATE MORE 20200628T15:22:04Z CVE-2020-0121 Null https://github.com/mooneee/CVE-2020-0121 MYMEMORY WARNING: YOU USED ALL AVAILABLE FREE TRANSLATIONS FOR TODAY. NEXT AVAILABLE IN 22 HOURS 50 MINUTES 55 SECONDSVISIT HTTPS://MYMEMORY.TRANSLATED.NET/DOC/USAGELIMITS.PHP TO TRANSLATE MORE 20200628T14:23:04Z 未知编号 CVE Data Analysis, CVE Monitor, CVE EXP Prediction Based on Deep Learning. 1999-2020年存量CVE数据分析、监控CVE增量更新、基于深度学习的CVE EXP预测和自动化推送 https://github.com/404notf0und/CVE-Flow 未查询到CVE信息 20200628T13:45:30Z CVE-2020-12856 A bluetooth-related vulnerability in some contact tracing apps https://github.com/alwentiu/COVIDSafe-CVE-2020-12856 MYMEMORY WARNING: YOU USED ALL AVAILABLE FREE TRANSLATIONS FOR TODAY. NEXT AVAILABLE IN 22 HOURS 50 MINUTES 41 SECONDSVISIT HTTPS://MYMEMORY.TRANSLATED.NET/DOC/USAGELIMITS.PHP TO TRANSLATE MORE 20200628T13:35:45Z CVE-2020-1948 Null https://github.com/ctlyz123/CVE-2020-1948 未查询到CVE信息 20200628T12:34:55Z CVE-2020-11444 Exphub[漏洞利用脚本库] 包括Webloigc、Struts2、Tomcat、Nexus、Solr、Jboss、Drupal的漏洞利用脚本,优先更新高危且易利用的漏洞利用脚本,最新添加CVE-2020-11444、CVE-2020-10204、CVE-2020-10199、CVE-2020-1938、CVE-2020-2551、CVE-2020-2555、CVE-2020-2883、CVE-2019-17558、CVE-2019-6340 https://github.com/zhzyker/exphub MYMEMORY WARNING: YOU USED ALL AVAILABLE FREE TRANSLATIONS FOR TODAY. NEXT AVAILABLE IN 22 HOURS 50 MINUTES 39 SECONDSVISIT HTTPS://MYMEMORY.TRANSLATED.NET/DOC/USAGELIMITS.PHP TO TRANSLATE MORE 20200628T08:19:59Z CVE-2020-8163 CVE-2020-8163 - Remote code execution of user-provided local names in Rails https://github.com/sh286/CVE-2020-8163 未查询到CVE信息 20200628T05:38:01Z CVE-2020-0787 Support ALL Windows Version https://github.com/cbwang505/CVE-2020-0787-EXP-ALL-WINDOWS-VERSION MYMEMORY WARNING: YOU USED ALL AVAILABLE FREE TRANSLATIONS FOR TODAY. NEXT AVAILABLE IN 22 HOURS 50 MINUTES 45 SECONDSVISIT HTTPS://MYMEMORY.TRANSLATED.NET/DOC/USAGELIMITS.PHP TO TRANSLATE MORE klee on Github 推荐 ts title url stars forks 20200628T03:06:16Z A simple quine generator (for sed). https://github.com/Circiter/quine-kleene-generator 0 0 s2e on Github 推荐 ts title url stars forks exploit on Github 推荐 ts title url stars forks 20200628T23:52:57Z This Bufferflow Guide includes instructions and the scripts necessary for Buffer Overflow Exploitation. This guide is a supplement for TheCyberMentor%s walkthrough. Please watch his walkthrough if you%re confused. Feel free to implement Pull Requests or raise Issues. https://github.com/planetxort/Buffer-Overflow-Guide 20 3 20200628T23:50:57Z Script to check MikroTik Routers the WinBox Authentication Bypass Disclosure & RouterOS Jailbreak vulnerabilities https://github.com/s1l3nt78/MkCheck 20 8 20200628T23:47:27Z Null https://github.com/Jb05s/Exploit-Dev-C 1 4 20200628T23:31:34Z Kernel Exploits https://github.com/connormcgarr/Kernel-Exploits 0 0 20200628T23:31:16Z Solution to BFS Ekoparty 2019 Exploitation Challenge https://github.com/skogafoss/BFS-Ekoparty-2019 0 0 20200628T23:30:43Z PlayStation 2 DVD Player Exploit https://github.com/CTurt/FreeDVDBoot 139 11 20200628T23:27:24Z This repository contains the reports of some of the exercises and project done in my Security course. It includes reports on attacks and exploitation like Buffer Overflow, Integer overflow, Sql Injection, XSS, XSRF. It also includes test automation using Selenium with Java to automate True positive vulnerabilities found on a web app [to be updated]. https://github.com/mondayevidence/SecurityTesting 0 0 20200628T22:26:29Z single file ctf/exploit client library - python3, type annotated https://github.com/lunixbochs/mpwn 36 5 20200628T22:00:13Z This repository is primarily maintained by Omar Santos and includes thousands of resources related to ethical hacking / penetration testing, digital forensics and incident response (DFIR), vulnerability research, exploit development, reverse engineering, and more. https://github.com/The-Art-of-Hacking/h4cker 6629 1038 20200628T21:53:28Z Automated All-in-One OS command injection and exploitation tool. https://github.com/commixproject/commix 2324 542 backdoor on Github 推荐 ts title url stars forks 20200628T23:28:36Z Undetectable & Xor encrypting with custom KEY (FUD Metasploit Rat) bypass Top Antivirus like BitDefender,Malwarebytes,Avast,ESET-NOD32,AVG,... & Automatically Add ICON and MANIFEST to excitable https://github.com/persianhydra/Xeexe-TopAntivirusEvasion 26 10 20200628T22:45:33Z Null https://github.com/lrjunior123/BackdoorMan 0 0 20200628T22:33:24Z UNIX PAM Backdoor with rolling passwords https://github.com/moortality/pamdoor 0 0 20200628T21:46:11Z Tool untuk membantu eksploitasi shell di linux target seperti membuat user backdoor dengan akses root, mendapatkan user dan password linux dari memory server dan menghapus jejak dari target server https://github.com/kurniawandata/xcodeshellexploitation 1 0 20200628T21:42:55Z Script backdoor upload untuk disisipkan pada file php yang ada di website target https://github.com/kurniawandata/xcodebackdoorupload 0 0 20200628T17:55:10Z Pupy is an opensource, cross-platform (Windows, Linux, OSX, Android) remote administration and post-exploitation tool mainly written in python https://github.com/n1nj4sec/pupy 5623 1487 20200628T17:38:16Z A deck-building roguelike cyberpunk game. https://github.com/uspgamedev/backdoor 14 2 20200628T15:59:51Z Null https://github.com/X-MarsHall/Shell-Backdoor 0 0 20200628T13:59:04Z Patch PE, ELF, Mach-O binaries with shellcode new version in development, available only to sponsors https://github.com/secretsquirrel/the-backdoor-factory 2516 703 20200628T11:27:40Z Advanced Attack toolkit, Native C++ RAT, Instagram Brute Force and Password Spraying over Tor, Mass Emailer, Malicious file Sentinel and more. https://github.com/quantumcored/paradoxia 121 20 fuzz on Github 推荐 ts title url stars forks 20200628T22:17:25Z Pedal Multiefecto para guitarra electrica (LoopBack, Delay, Fuzz y Wah-wah) https://github.com/jrosmirez94/Pedal-Multiefecto 0 0 20200628T21:10:36Z Null https://github.com/renanreboredo/fuzzy-trader 0 0 20200628T21:01:06Z Null https://github.com/handong32/NicFuzzer 0 0 20200628T20:57:23Z Null https://github.com/bahadrzeren/InvPendFuzzyController 0 0 20200628T20:43:45Z Null https://github.com/rrkoti/fuzzy-journey 0 0 20200628T19:53:21Z Repeat tests. Repeat tests. Repeat tests. https://github.com/ehmicky/test-each 88 1 20200628T19:47:07Z Null https://github.com/BayooG/fuzzy-robot-avoding-obstacles 1 0 20200628T19:33:57Z Null https://github.com/leodealmeida/fuzzyTrader 0 0 20200628T19:08:42Z Personal website of Laurence Hughes https://github.com/fuzzylogicxx/fuzzylogic 4 1 20200628T18:17:36Z Fuzzy System for Warehouse Ordering System https://github.com/mariusraht1/AI_2_FuzzySystem 0 0 日更新程序 About No description, website, or topics provided. Resources Readme Releases No releases published