CVE-2020-29576
08.12.2020, 16:15
The official eggdrop Docker images before 1.8.4rc2 contain a blank password for a root user. Systems using the Eggdrop Docker container deployed by affected versions of the Docker image may allow an remote attacker to achieve root access with a blank password.Enginsight
| Vendor | Product | Version |
|---|---|---|
| eggheads | eggdrop_docker_image | 1.6 |
| eggheads | eggdrop_docker_image | 1.6.21 |
| eggheads | eggdrop_docker_image | 1.8.0 |
| eggheads | eggdrop_docker_image | 1.8.0:rc1 |
| eggheads | eggdrop_docker_image | 1.8.0:rc2 |
| eggheads | eggdrop_docker_image | 1.8.0:rc3 |
| eggheads | eggdrop_docker_image | 1.8.0:rc4 |
| eggheads | eggdrop_docker_image | 1.8.1 |
| eggheads | eggdrop_docker_image | 1.8.1:rc2 |
| eggheads | eggdrop_docker_image | 1.8.2 |
| eggheads | eggdrop_docker_image | 1.8.2:rc1 |
| eggheads | eggdrop_docker_image | 1.8.2:rc2 |
| eggheads | eggdrop_docker_image | 1.8.3 |
| eggheads | eggdrop_docker_image | 1.8.3:rc1 |
| eggheads | eggdrop_docker_image | 1.8.4 |
| eggheads | eggdrop_docker_image | 1.8.4:rc1 |
| eggheads | eggdrop_docker_image | 1.8.4:rc2 |
| eggheads | eggdrop_docker_image | 1.8.4:rc3 |
𝑥
= Vulnerable software versions