Mastodawn

CyberArkLabs Feb 2, 2023

🚨Breaking News🚨:
Docker Desktop just got hit with more vulnerabilities!

In this two-part series, we dive into the details of how Eviatar Gerzi found SIX privilege escalation vulnerabilities in Docker Desktop for Windows and created a tool, "PipeViewer," to help identify potential risks.

Follow the journey of how he uncovered full privilege escalation (CVE-2022-25365) and more in this must-read article!

https://www.cyberark.com/resources/threat-research-blog/breaking-docker-named-pipes-systematically-docker-desktop-privilege-escalation-part-1

🔍 #DockerVulnerability #WindowsContainers #PipeViewer #PrivilegeEscalation #CyberSecurityAwareness

Breaking Docker Named Pipes SYSTEMatically: Docker Desktop Privilege Escalation – Part 1

Everything started when I was researching Windows containers. It required installing Docker Desktop for Windows, and I couldn’t help but notice that there were many Docker processes. Since some of...