Ghost Alpine Docker Image
1 CVEs
product
Monthly
The official ghost docker images before 2.16.1-alpine (Alpine specific) contain a blank password for a root user. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.
Docker
Authentication Bypass
Ghost Alpine Docker Image
NVD
GitHub
CVSS 3.1
9.8
EPSS
2.8%
EPSS 3%
CVSS 9.8
CRITICAL
Act Now
The official ghost docker images before 2.16.1-alpine (Alpine specific) contain a blank password for a root user. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.
Docker
Authentication Bypass
Ghost Alpine Docker Image
NVD
GitHub