Windows Docker Information Disclosure Vulnerability CVE-2021-1645 Security Vulnerability Released: Jan 12, 2021 Assigning CNA: Microsoft Impact: Information Disclosure Max Severity: Important CVSS Source: Microsoft CVSS:3.1 5.0 / 4.4 Temporal score metrics (3) Exploit Code Existence: No Reported Date: Jan 12, 2021 Patch Availability: Yes Patch Status: Available Patch Release Date: Jan 12, 2021 Patch Title: Windows Docker Information Disclosure Vulnerability Patch Description: This security update resolves a vulnerability in Docker for Windows that could allow an attacker to disclose sensitive information. The vulnerability is caused by a race condition in the way that Docker for Windows handles certain types of network traffic. This update resolves the vulnerability by modifying the way that Docker for Windows handles network traffic. Patch Download: Download Patch Patch Notes: Patch Notes Acknowledgements: Acknowledgements References: References