A recently discovered vulnerability in Docker Desktop for macOS is raising alarms within the security community. The flaw, identified as CVE-2025-4095, results from improper application of Registry Access Management (RAM) policies in certain versions of Docker Desktop. When users sign in through a macOS configuration profile, Docker fails to apply the necessary restrictions on accessible Docker registries. This flaw allows unauthorized users to pull images from any registry, even those not approved or vetted by the organization.
The vulnerability impacts Docker Desktop versions 4.36.0 to 4.40.0, posing a medium severity risk with a CVSS score of 4.3. It has the potential to disrupt business operations, particularly for organizations using Docker as part of their DevOps processes. The flaw creates an opportunity for attackers to introduce malicious container images, including malware or ransomware, into the software supply chain. These compromised containers can undermine security, compliance, and application integrity.
Attackers could exploit this flaw if they gain access to an authenticated local user account. In these cases, developers using affected versions could inadvertently pull untrusted images containing harmful code, further expanding the risk. While the issue involves a local attack vector, the consequences could be severe in environments where Docker plays a central role in application development. This vulnerability underlines the importance of enforcing proper access controls and security policies in containerized environments.
To mitigate the risk, Docker has released a patch in version 4.41.0, addressing the issue. Users are encouraged to upgrade to the latest version to restore proper registry access controls. Organizations should also audit their Docker Desktop configurations, monitor for unapproved images, and educate development teams on the importance of sourcing images only from trusted repositories. These actions will help ensure that security controls are effective and supply chain risks are minimized.
