Detections
Analytics

Docker Desktop 4.46.0 < 4.47.0 Container Escape

high Nessus Plugin ID 269979

Language:

Synopsis

The remote host has an application installed that is affected by a container escape vulnerability.

Description

The version of Docker Desktop is prior to 4.47.0. It is therefore affected by a container escape vulnerability.
In a hardened Docker environment, with Enhanced Container Isolation ( ECI https://docs.docker.com/enterprise/security/ hardened-desktop/enhanced-container-isolation/ ) enabled, an administrator can utilize the command restrictions feature https://docs.docker.com/enterprise/security/hardened-desktop/enhanced-container-isolation/config/#command-restrictions to restrict commands that a container with a Docker socket mount may issue on that socket. Due to a software bug, the configuration to restrict commands was ignored when passed to ECI, allowing any command to be executed on the socket. This grants excessive privileges by permitting unrestricted access to powerful Docker commands. The vulnerability affects only Docker Desktop 4.46.0 users that have ECI enabled and are using the Docker socket command restrictions feature. In addition, since ECI restricts mounting the Docker socket into containers by default, it only affects containers which are explicitly allowed by the administrator to mount the Docker socket.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

Solution

Upgrade to Docker Desktop version 4.47.0 or later

See Also

http://www.nessus.org/u?8a15d7ad

https://docs.docker.com/desktop/release-notes/#4470

Plugin Details

Severity: High

ID: 269979

File Name: docker_cve-2025-10657.nasl

Version: 1.1

Type: local

Agent: windows, macosx, unix

Family: Misc.

Published: 10/10/2025

Updated: 10/10/2025

Supported Sensors: Nessus Agent, Nessus

Risk Information

VPR

Risk Factor: High

Score: 7.3

CVSS v2

Risk Factor: Medium

Base Score: 6.5

Vector: CVSS2#AV:L/AC:L/Au:M/C:C/I:C/A:C

CVSS Score Source: CVE-2025-10657

CVSS v3

Risk Factor: High

Base Score: 8.2

Vector: CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H

CVSS v4

Risk Factor: High

Base Score: 8.7

Vector: CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H

Vulnerability Information

CPE: cpe:/a:docker:docker

Patch Publication Date: 9/25/2025

Vulnerability Publication Date: 9/25/2025

Reference Information

CVE: CVE-2025-10657

IAVA: 2025-A-0724