Docker Desktop Enhanced Container Isolation Command Restriction Bypass Vulnerability

A vulnerability exists in Docker Desktop 4.46.0 for Windows and Mac, specifically when Enhanced Container Isolation (ECI) is enabled. In this version, an administrator can use the Docker socket command restrictions feature to limit what commands a container can execute on the Docker socket. However, due to a software bug, these restrictions are not applied, allowing containers to execute any command on the socket. This oversight grants excessive privileges by providing unrestricted access to powerful Docker commands. The issue only affects containers that have been explicitly allowed to mount the Docker socket.

Impact

Excessive privileges allowing unrestricted access to Docker commands via the Docker socket.

Reproduction

To reproduce this vulnerability, enable Enhanced Container Isolation (ECI) in Docker Desktop 4.46.0. Then, allow a container to mount the Docker socket and apply command restrictions through the ECI settings. Despite the restrictions being set, the container will still have unrestricted access to execute commands on the Docker socket, bypassing the intended limitations.

Remediation

Users can update to Docker Desktop version 4.47.0 or later, where this vulnerability has been fixed.