CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2020-29389

The official Crux Linux Docker images 3.0 through 3.4 contain a blank password for a root user. System using the Crux Linux Docker container deployed by affected versions of the Docker image may allow an attacker to achieve root access with a blank password.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 59.4%

CVSS Severity

CVSS v3 Score 9.8

CVSS v2 Score 10.0

References

https://github.com/koharin/koharin2/blob/main/CVE-2020-29389
https://github.com/koharin/koharin2/blob/main/CVE-2020-29389

Products affected by CVE-2020-29389

Docker » Crux Linux Docker Image » Version: 3.0

cpe:2.3:a:docker:crux_linux_docker_image:3.0
Docker » Crux Linux Docker Image » Version: 3.1

cpe:2.3:a:docker:crux_linux_docker_image:3.1
Docker » Crux Linux Docker Image » Version: 3.2

cpe:2.3:a:docker:crux_linux_docker_image:3.2
Docker » Crux Linux Docker Image » Version: 3.4

cpe:2.3:a:docker:crux_linux_docker_image:3.4

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-29389

Products

Pricing

Contact Us