CVE-2025-13743

Low CVSS: 2.4

Docker Desktop diagnostics bundles were found to include expired Hub PATs in log output due to error object serialization. This poses a risk of leaking sensitive information in exported diagnostics, especially when access denied errors occurred.

Vendor

Docker

Product

Docker Desktop

CWE

CWE-532

Yayın Tarihi

2025-12-09 21:15:53

Güncelleme

2026-01-30 19:35:24

Source Identifier

security@docker.com

KEV Date Added

Kategoriler

CWE-532 Docker Desktop LOW Docker 2025

Referanslar

https://docs.docker.com/desktop/troubleshoot-and-support/troubleshoot/#troubleshoot-menu

Benzer Kayıtlar

High

CVE-2025-15558

Docker CLI for Windows searches for plugin binaries in C:\ProgramData\Docker\cli-plugins, a directory that does not exis…

Medium

CVE-2026-2664

An out of bounds read vulnerability in the grpcfuse kernel module present in the Linux VM in Docker Desktop for Windows,…

High

CVE-2025-64443

MCP Gateway allows easy and secure running and deployment of MCP servers. In versions 0.27.0 and earlier, when MCP Gatew…

High

CVE-2025-3224

A vulnerability in the update process of Docker Desktop for Windows versions prior to 4.41.0 could allow a local, low-pr…