CVE-2025-9164

EUVD-2025-36191
Docker Desktop Installer.exe is vulnerable to DLL hijacking due to insecure DLL search order. The installer searches for required DLLs in the user's Downloads folder before checking system directories, allowing local privilege escalation through malicious DLL placement.This issue affects Docker Desktop: through 4.48.0.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
DockerCNA
8.8 HIGH
LOCAL
HIGH
LOW
CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/S:P/AU:Y/R:U/V:C
Base Score
CVSS 3.x
EPSS Score
Percentile: Unknown
Early Detection
Affected products identified ahead of NVD analysis through intelligence sources.
VendorProductVersionSource
dockerdesktop
𝑥
≤ 4.48.0
CNA
Common Weakness Enumeration
References
https://docs.docker.com/desktop/release-notes/