Docker log information leakage vulnerability

Docker is an open source application container engine from the U.S. company Docker. The product supports creating a container (lightweight virtual machine) and deploying and running applications on Linux systems, as well as automating the installation, deployment and upgrade of applications through configuration files. A security vulnerability exists in Docker versions 4.3.0 and 4.3.1, which stems from the possibility that the software could log sensitive information (access tokens or passwords) on a user’s machine during login. An attacker could gain access to sensitive system information through this vulnerability.