Default credentials

2020-12-1600:15:00

PRIOn knowledge base

www.prio-n.com

9.5 High

AI Score

Confidence

High

0.007 Low

EPSS

Percentile

79.8%

JSON

The official sonarqube docker images before alpine (Alpine specific) contain a blank password for a root user. System using the sonarqube docker container deployed by affected versions of the docker image may allow a remote attacker to achieve root access with a blank password.

CPENameOperatorVersion
sonarqube_docker_imageeq4.5.7
sonarqube_docker_imageeq5.5
sonarqube_docker_imageeq5.6
sonarqube_docker_imageeq5.6.1
sonarqube_docker_imageeq5.6.2
sonarqube_docker_imageeq5.6.3
sonarqube_docker_imageeq5.6.4
sonarqube_docker_imageeq5.6.5
sonarqube_docker_imageeq5.6.7
sonarqube_docker_imageeq6.0

Name	Operator	Version
sonarqube_docker_image	eq	4.5.7
sonarqube_docker_image	eq	5.5
sonarqube_docker_image	eq	5.6
sonarqube_docker_image	eq	5.6.1
sonarqube_docker_image	eq	5.6.2
sonarqube_docker_image	eq	5.6.3
sonarqube_docker_image	eq	5.6.4
sonarqube_docker_image	eq	5.6.5
sonarqube_docker_image	eq	5.6.7
sonarqube_docker_image	eq	6.0