Composer Docker Image
1 CVEs
product
Monthly
The official composer docker images before 1.8.3 contain a blank password for a root user. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.
Docker
Authentication Bypass
Composer Docker Image
NVD
GitHub
CVSS 3.1
9.8
EPSS
3.0%
EPSS 3%
CVSS 9.8
CRITICAL
Act Now
The official composer docker images before 1.8.3 contain a blank password for a root user. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.
Docker
Authentication Bypass
Composer Docker Image
NVD
GitHub