Information disclosure in Docker Desktop
CVE-2025-3911
Recording of environment variables, configured for running containers, in Docker Desktop application logs could lead to unintentional disclosure of sensitive information such as api keys, passwords, etc. A malicious actor with read access…
EPSS: 0.001 (27.8th percentile) — read the EPSS interpretation.
Affected products
- Docker Desktop — versions 0