CVE-2025-9164

HIGH

Docker Desktop <4.48.0 - Privilege Escalation

Title source: llm

Description

Docker Desktop Installer.exe is vulnerable to DLL hijacking due to insecure DLL search order. The installer searches for required DLLs in the user's Downloads folder before checking system directories, allowing local privilege escalation through malicious DLL placement.This issue affects Docker Desktop: through 4.48.0.

References (1)

[Various Sources] https://docs.docker.com/desktop/release-notes/

Scores

CVSS v4 8.8

EPSS 0.0001

EPSS Percentile 2.5%

CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/S:P/AU:Y/R:U/V:C

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact total

Details

CWE

CWE-427

Status published

Products (1)

Docker/Docker Desktop < 4.48.0

Published Oct 27, 2025

Tracked Since Feb 18, 2026