CVE-2023-5166 Information

Description

Docker Desktop before 4.23.0 allows Access Token theft via a crafted extension icon URL.

This issue affects Docker Desktop: before 4.23.0.

Reference

https://docs.docker.com/desktop/release-notes/#4230