|
199111
|
9.8 |
CRITICAL
Network
|
softwareag
|
terracotta_server_oss
|
The Software AG Terracotta Server OSS Docker image 5.4.1 contains a blank password for the root user. Systems deployed using affected versions of the Terracotta Server OSS container may allow a remot…
|
CWE-306
Missing Authentication for Critical Function
|
CVE-2020-35469
|
2024-11-21 14:27 |
2020-12-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199112
|
9.8 |
CRITICAL
Network
|
appbase
|
streams
|
The Appbase streams Docker image 2.1.2 contains a blank password for the root user. Systems deployed using affected versions of the streams container may allow a remote attacker to achieve root acces…
|
CWE-306
Missing Authentication for Critical Function
|
CVE-2020-35468
|
2024-11-21 14:27 |
2020-12-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199113
|
9.8 |
CRITICAL
Network
|
docker
|
docs
|
The Docker Docs Docker image through 2020-12-14 contains a blank password for the root user. Systems deployed using affected versions of the Docker Docs container may allow a remote attacker to achie…
|
CWE-306
Missing Authentication for Critical Function
|
CVE-2020-35467
|
2024-11-21 14:27 |
2020-12-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199114
|
9.8 |
CRITICAL
Network
|
blackfire
|
blackfire_docker_image
|
The Blackfire Docker image through 2020-12-14 contains a blank password for the root user. Systems deployed using affected versions of the Blackfire container may allow a remote attacker to achieve r…
|
CWE-306
Missing Authentication for Critical Function
|
CVE-2020-35466
|
2024-11-21 14:27 |
2020-12-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199115
|
9.8 |
CRITICAL
Network
|
weave
|
cloud_agent
|
Version 1.3.0 of the Weave Cloud Agent Docker image contains a blank password for the root user. Systems deployed using affected versions of the Weave Cloud Agent container may allow a remote attacke…
|
CWE-306
Missing Authentication for Critical Function
|
CVE-2020-35464
|
2024-11-21 14:27 |
2020-12-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199116
|
9.8 |
CRITICAL
Network
|
instana
|
dynamic_apm
|
Version 1.0.0 of the Instana Dynamic APM Docker image contains a blank password for the root user. Systems deployed using affected versions of the Instana Dynamic APM container may allow a remote att…
|
CWE-306
Missing Authentication for Critical Function
|
CVE-2020-35463
|
2024-11-21 14:27 |
2020-12-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199117
|
9.8 |
CRITICAL
Network
|
coscale_agent_project
|
coscale_agent
|
Version 3.16.0 of the CoScale agent Docker image contains a blank password for the root user. Systems deployed using affected versions of the CoScale agent container may allow a remote attacker to ac…
|
CWE-306
Missing Authentication for Critical Function
|
CVE-2020-35462
|
2024-11-21 14:27 |
2020-12-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199118
|
6.1 |
MEDIUM
Network
|
onlineonly
|
phpjabbers_appointment_scheduler
|
Multiple cross-site scripting (XSS) vulnerabilities exist in PHPJabbers Appointment Scheduler 2.3, in the index.php admin login webpage (with different request parameters), allows remote attackers to…
|
CWE-79
Cross-site Scripting
|
CVE-2020-35416
|
2024-11-21 14:27 |
2020-12-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199119
|
7.5 |
HIGH
Network
|
jsonparser_project
fedoraproject
|
jsonparser
fedora
|
jsonparser 1.0.0 allows attackers to cause a denial of service (panic: runtime error: slice bounds out of range) via a GET call.
|
NVD-CWE-noinfo
|
CVE-2020-35381
|
2024-11-21 14:27 |
2020-12-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199120
|
7.5 |
HIGH
Network
|
gjson_project
|
gjson
|
GJSON before 1.6.4 allows attackers to cause a denial of service via crafted JSON.
|
NVD-CWE-noinfo
|
CVE-2020-35380
|
2024-11-21 14:27 |
2020-12-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
