Lucene search
PRIOn knowledge basePRION:CVE-2020-11492HistoryJun 05, 2020 - 2:15 p.m.
Design/Logic Flaw
2020-06-0514:15:00
PRIOn knowledge base
www.prio-n.com
3
An issue was discovered in Docker Desktop through 2.2.0.5 on Windows. If a local attacker sets up their own named pipe prior to starting Docker with the same name, this attacker can intercept a connection attempt from Docker Service (which runs as SYSTEM), and then impersonate their privileges.
| CPE | Name | Operator | Version |
|---|---|---|---|
| docker_desktop | le | 2.2.0.5 |
Related
cvelist
cvelist
CVE-2020-11492
2020-06-05 13:10:17
nessus
nessus
Docker Desktop < 2.3.0.2 Privilege Escalation
2023-09-15 00:00:00
pentestpartners
pentestpartners
Docker Desktop for Windows PrivEsc (CVE-2020-11492)
2020-05-22 08:12:52
Raining SYSTEM Shells with Citrix Workspace app
2020-07-21 15:27:38
Pun-free Cylance vulnerability, fixed
2021-11-10 06:55:33
cve
cve
CVE-2020-11492
2020-06-05 14:15:10
nvd
nvd
CVE-2020-11492
2020-06-05 14:15:10
githubexploit
githubexploit
Exploit for Improper Privilege Management in Docker Docker Desktop
2020-05-27 18:11:18
Exploit for Race Condition in Docker Docker Desktop
2020-05-28 04:32:01