Docker Desktop prior to 4.6.0 on Windows allows malicious users to delete any file through the hyperv/destroy dockerBackendV2 API via a symlink in the DataFolder parameter, a different vulnerability than CVE-2022-26659.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
docker desktop |