The official composer docker images before 1.8.3 contain a blank password for a root user. System using the composer docker container deployed by affected versions of the docker image may allow a remote attacker to achieve root access with a blank password.
Read More
The post CVE-2020-35184 (composer) appeared first on Malware Devil.
https://malwaredevil.com/2020/12/17/cve-2020-35184-composer/?utm_source=rss&utm_medium=rss&utm_campaign=cve-2020-35184-composer
No comments:
Post a Comment