Skip to main content

Registry

2 CVEs product

Monthly

CVE-2020-29591 CRITICAL Act Now

Versions of the Official registry Docker images through 2.7.0 contain a blank password for the root user. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Docker Brute Force Registry
NVD GitHub
CVSS 3.1
9.8
EPSS
2.6%
CVE-2019-12149 PHP CRITICAL PATCH Act Now

SQL injection vulnerability in silverstripe/restfulserver module 1.0.x before 1.0.9, 2.0.x before 2.0.4, and 2.1.x before 2.1.2 and silverstripe/registry module 2.1.x before 2.1.1 and 2.2.x before. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

SQLi Registry Restfulserver
NVD
CVSS 3.0
9.8
EPSS
1.4%
EPSS 3% CVSS 9.8
CRITICAL Act Now

Versions of the Official registry Docker images through 2.7.0 contain a blank password for the root user. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Docker Brute Force +1
NVD GitHub
EPSS 1% CVSS 9.8
CRITICAL PATCH Act Now

SQL injection vulnerability in silverstripe/restfulserver module 1.0.x before 1.0.9, 2.0.x before 2.0.4, and 2.1.x before 2.1.2 and silverstripe/registry module 2.1.x before 2.1.1 and 2.2.x before. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

SQLi Registry Restfulserver
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy