CVE-2023-1802

low-risk
Published 2023-04-06

In Docker Desktop 4.17.x the Artifactory Integration falls back to sending registry credentials over plain HTTP if the HTTPS health check has failed. A targeted network sniffing attack can lead to a disclosure of sensitive information. Only users who have Access Experimental Features enabled and have logged in to a private registry are affected.

Do I need to act?

-
0.18% chance of exploitation
EPSS score — low exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
5
CVSS 5.9/10 Medium
NETWORK / HIGH complexity

Affected Products (2)

Desktop
Desktop

Affected Vendors

Docker

References (4)

Release Notes https://docs.docker.com/desktop/release-notes/#4180
Exploit https://github.com/docker/for-win/issues/13344
Release Notes https://docs.docker.com/desktop/release-notes/#4180
Exploit https://github.com/docker/for-win/issues/13344
26
/ 100
low-risk
Severity 18/34 · Moderate
Exploitability 1/34 · Minimal
Exposure 7/34 · Low