Thursday, December 17, 2020
CVE-2020-35195
nist.gov
In: nist.gov
The official haproxy docker images before 1.8.18-alpine (Alpine specific) contain a blank password for a root user. System using the haproxy docker container deployed by affected versions of the docker image may allow a remote attacker to achieve root access with a blank password. CVE-2020-35195