CVE-2020-35189

The official kong docker images before 1.0.2-alpine (Alpine specific) contain a blank password for a root user. System using the kong docker container deployed by affected versions of the docker image may allow a remote attacker to achieve root access with a blank password.
References
Configurations

Configuration 1

cpe:2.3:a:kong:kong_alpine_docker_image:*:*:*:*:*:*:*:*

Information

Published : 2020-12-17 01:15

Updated : 2020-12-18 06:36


NVD link : CVE-2020-35189

Mitre link : CVE-2020-35189

Products Affected
No products.
CWE