Threat Encyclopedia

Insertion of Sensitive Information Vulnerability CVE-2021-45449 for Docker Desktop


Docker Desktop version 4.3.0 and 4.3.1 has a bug that may log sensitive information (access token or password) on the user\'s machine during login. This only affects users if they are on Docker Desktop 4.3.0, 4.3.1 and the user has logged in while on 4.3.0, 4.3.1. Gaining access to this data would require having access to the users local files.

affected-products-logoAffected Applications

Docker Desktop

CVE References


Telemetry logoTelemetry