Lucene search
K

22 matches found

F5 Networks
F5 Networks
added 2023/02/21 6:55 p.m.26 views

K25551452: Alpine Linux Docker image vulnerability CVE-2019-5021

Security Advisory Description Versions of the Official Alpine Linux Docker images since v3.3 contain a NULL password for the root user. This vulnerability appears to be the result of a regression introduced in December of 2015. Due to the nature of this issue, systems deployed using affected...

10CVSS9.6AI score0.06263EPSS
Exploits2
SUSE CVE
SUSE CVE
added 2023/02/15 4:17 a.m.3 views

SUSE CVE-2019-5021

Versions of the Official Alpine Linux Docker images since v3.3 contain a NULL password for the root user. This vulnerability appears to be the result of a regression introduced in December of 2015. Due to the nature of this issue, systems deployed using affected versions of the Alpine Linux...

9.8CVSS9.5AI score0.06263EPSS
Exploits2References35
OpenVAS
OpenVAS
added 2021/12/14 12:0 a.m.20 views

SUSE: Security Advisory (SUSE-SU-2021:4011-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS9.6AI score0.06263EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2021/12/14 12:0 a.m.33 views

SUSE SLES12 Security Update : sles12sp2-docker-image (SUSE-SU-2021:4011-1)

The remote SUSE Linux SLES12 host has a package installed that is affected by a vulnerability as referenced in the SUSE- SU-2021:4011-1 advisory. - Invalidate the root password was empty before bsc1134524 CVE-2019-5021 Note that SUSE does not recommend use of this image anymore, please use newer...

10CVSS7.3AI score0.06263EPSS
Exploits2References4
OSV
OSV
added 2021/12/13 12:3 p.m.5 views

SUSE-SU-2021:4011-1 Security update for sles12sp2-docker-image

This update for sles12sp2-docker-image fixes the following issues: - Invalidate the root password was empty before bsc1134524 CVE-2019-5021 Note that SUSE does not recommend use of this image anymore, please use newer versions from the registry...

10CVSS9.7AI score0.06263EPSS
Exploits2References3
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.17 views

SUSE: Security Advisory (SUSE-SU-2019:1368-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS9.6AI score0.06263EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.20 views

SUSE: Security Advisory (SUSE-SU-2019:1368-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS9.6AI score0.06263EPSS
Exploits2References2
Prion
Prion
added 2020/12/17 2:15 a.m.21 views

Design/Logic Flaw

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2019-5021. Reason: This candidate is a reservation duplicate of CVE-2019-5021. Notes: All CVE users should reference CVE-2019-5021 instead of this candidate. All references and descriptions in this candidate have been removed to...

9.3AI score0.06263EPSS
Exploits2
Prion
Prion
added 2020/12/17 2:15 a.m.17 views

Design/Logic Flaw

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2019-5021. Reason: This candidate is a reservation duplicate of CVE-2019-5021. Notes: All CVE users should reference CVE-2019-5021 instead of this candidate. All references and descriptions in this candidate have been removed to...

9.3AI score0.06263EPSS
Exploits2
CVE
CVE
added 2020/12/17 1:35 a.m.66 views

CVE-2020-35194

CVE-2020-35194 is a reservation duplicate of CVE-2019-5021. Connected docs show that CVE-2019-5021 affects Alpine Linux Docker images since v3.3, introducing a NULL root password due to a regression (Dec 2015). Impact: remote authentication bypass on affected containers. Remediation: upgrade to n...

9.2AI score
Exploits1
CVE
CVE
added 2020/12/17 1:17 a.m.60 views

CVE-2020-35188

CVE-2020-35188 is a reservation duplicate of CVE-2019-5021 and is not an active entry; connected docs confirm CVE-2019-5021 affects Alpine Linux Docker images (since v3.3) with a NULL root password due to a regression around December 2015. The impact is remote access risk if PAM/shadow-based auth...

9.2AI score
Exploits1
Prion
Prion
added 2020/12/11 4:15 p.m.19 views

Design/Logic Flaw

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2019-5021. Reason: This candidate is a reservation duplicate of CVE-2019-5021. Notes: All CVE users should reference CVE-2019-5021 instead of this candidate. All references and descriptions in this candidate have been removed to...

9.3AI score0.06263EPSS
Exploits2
Prion
Prion
added 2020/12/11 3:15 p.m.17 views

Design/Logic Flaw

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2019-5021. Reason: This candidate is a reservation duplicate of CVE-2019-5021. Notes: All CVE users should reference CVE-2019-5021 instead of this candidate. All references and descriptions in this candidate have been removed to...

9.3AI score0.06263EPSS
Exploits2
OSV
OSV
added 2019/10/11 3:7 p.m.4 views

SUSE-SU-2019:1368-2 Recommended update for sles12sp3-docker-image, sles12sp4-image, system-user-root

This update for sles12sp3-docker-image, sles12sp4-image, system-user-root fixes the following issues: - CVE-2019-5021: Include an invalidated root password by default, not an empty one bsc1134524...

10CVSS9.6AI score0.06263EPSS
Exploits2References3
Qualys Blog
Qualys Blog
added 2019/06/11 3:0 p.m.140 views

Alpine Docker Image Vulnerability (CVE-2019-5021): How to Detect and Fix

A vulnerability affecting the official Alpine Docker images version =3.3 contains a null password for the root user. Due to the nature of this issue, systems deployed using affected versions of the Alpine Linux container that utilize Linux PAM, or some other mechanism that uses the system shadow...

10CVSS9.5AI score0.06263EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2019/06/05 12:0 a.m.33 views

openSUSE Security Update : system-user-root (openSUSE-2019-1495)

This update for sles12sp3-docker-image, sles12sp4-image, system-user-root fixes the following issues : - CVE-2019-5021: Include an invalidated root password by default, not an empty one bsc1134524 This update was imported from the SUSE:SLE-15:Update update project. C Tenable Network Security, Inc...

10CVSS8.2AI score0.06263EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2019/06/04 12:0 a.m.85 views

openSUSE: Security Advisory for Recommended (openSUSE-SU-2019:1495-1)

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

10CVSS9.6AI score0.06263EPSS
Exploits2References2
OSV
OSV
added 2019/06/03 5:47 a.m.3 views

OPENSUSE-SU-2019:1495-1 Recommended update for sles12sp3-docker-image, sles12sp4-image, system-user-root

This update for sles12sp3-docker-image, sles12sp4-image, system-user-root fixes the following issues: - CVE-2019-5021: Include an invalidated root password by default, not an empty one bsc1134524 This update was imported from the SUSE:SLE-15:Update update project...

10CVSS6.9AI score0.06263EPSS
Exploits2References3
OSV
OSV
added 2019/05/28 11:15 a.m.5 views

SUSE-SU-2019:1368-1 Recommended update for sles12sp3-docker-image, sles12sp4-image, system-user-root

This update for sles12sp3-docker-image, sles12sp4-image, system-user-root fixes the following issues: - CVE-2019-5021: Include an invalidated root password by default, not an empty one bsc1134524...

10CVSS9.6AI score0.06263EPSS
Exploits2References3
Circl
Circl
added 2019/05/15 12:52 p.m.10 views

CVE-2019-5021

creationtimestamp| type| source ---|---|--- 2019-05-15 12:52:15+00:00| seen| https://t.me/canyoupwnme/5525 2019-05-21 14:10:37+00:00| seen| https://t.me/BleepingComputer/5085 2020-12-22 08:12:31+00:00| published-proof-of-concept| https://t.me/k8security/171...

10CVSS7.3AI score0.06263EPSS
Exploits2References3
Rows per page
Query Builder