← ExploitWatch
HomeExploited Vulnerabilities

CVE-2019-15752 — Actively Exploited: Desktop Community Edition (Docker)

Docker Desktop Community Edition contains a vulnerability that may allow local users to escalate privileges by placing a trojan horse docker-credential-wincred.exe file in %PROGRAMDATA%\DockerDesktop\version-bin\.

CVE IDCVE-2019-15752
VendorDocker
ProductDesktop Community Edition
Vulnerability nameDocker Desktop Community Edition Privilege Escalation Vulnerability
Date added2021-11-03
Remediation due2022-05-03
Known ransomware useUnknown
Required actionApply updates per vendor instructions.
DescriptionDocker Desktop Community Edition contains a vulnerability that may allow local users to escalate privileges by placing a trojan horse docker-credential-wincred.exe file in %PROGRAMDATA%\DockerDesktop\version-bin\.
SourceCISA Known Exploited Vulnerabilities

🔍 Search all exploited vulnerabilities →