Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
Eric_Knopp
Participant

Docker Desktop <4.27.1 vulnerability on R81.10

Hello,

We scan our Checkpoint Gateways with Tenable/Nessus scanners, and they are now showing a Critical Vulnerability for Docker Desktop:

Path : /usr/bin/docker Installed version : 1.13.1 Fixed version : 4.27.1

Is anyone else seeing this vulnerability in their environment? Any suggestions on how to remediate/workaround? Do not want to break anything in the OS.

Thank you

0 Kudos
4 Replies
PhoneBoy
Admin
Admin

Software components installed on Gaia may not be the latest versions, but are fully patched/maintained by Check Point for security issues.
You also cannot update these components independently of our update mechanisms (e.g. JHF).

0 Kudos
philip_zempel
Explorer

is there a plan to upgrade past docker desktop 1.13.1 seems like we're pretty far behind.

0 Kudos
PhoneBoy
Admin
Admin

I assume there is, but it would only be done in the context of a major release if deemed necessary.
If you have questions about a specific CVE, you can post them here or query via TAC.

0 Kudos
gonzalme
Explorer

Docker Desktop < 4.27.1 Multiple Vulnerabilities

Plugin Output:
Path : /bin/docker
Installed version : 1.13.1
Fixed version : 4.27.1

CVE-2024-21626,CVE-2024-23650,CVE-2024-23651,CVE-2024-23652,CVE-2024-23653,CVE-2024-23657

IAVA #2024-A-0071

http://www.nessus.org/u?992441ea
http://www.nessus.org/u?910afe4d

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

Upcoming Events

    CheckMates Events