Drupal Docker Images
1 CVEs
product
Monthly
The official drupal docker images before 8.5.10-fpm-alpine (Alpine specific) contain a blank password for a root user. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.
Docker
Authentication Bypass
Drupal Docker Images
NVD
GitHub
CVSS 3.1
9.8
EPSS
4.6%
EPSS 5%
CVSS 9.8
CRITICAL
Act Now
The official drupal docker images before 8.5.10-fpm-alpine (Alpine specific) contain a blank password for a root user. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.
Docker
Authentication Bypass
Drupal Docker Images
NVD
GitHub