The Blackfire Docker image through 2020-12-14 contains a blank password for the root user. Systems deployed using affected versions of the Blackfire container may allow a remote attacker to achieve root access with a blank password.
CPE | Name | Operator | Version |
---|---|---|---|
blackfire_docker_image | eq | <= 20201214 |