{"vulnerability": "cve-2020-3518", "sightings": [{"uuid": "490cc099-2688-4b78-bfa1-325b994b6481", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-35188", "type": "seen", "source": "https://t.me/cibsecurity/20984", "content": "\u203c CVE-2020-35188 \u203c\n\nThe official chronograf docker images before 1.7.7-alpine (Alpine specific) contain a blank password for a root user. System using the chronograf docker container deployed by affected versions of the docker image may allow a remote attacker to achieve root access with a blank password.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-12-17T07:42:34.000000Z"}, {"uuid": "a6147a69-afb8-41f2-ae29-a4c10303373b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-35184", "type": "seen", "source": "https://t.me/cibsecurity/20977", "content": "\u203c CVE-2020-35184 \u203c\n\nThe official composer docker images before 1.8.3 contain a blank password for a root user. System using the composer docker container deployed by affected versions of the docker image may allow a remote attacker to achieve root access with a blank password.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-12-17T07:42:27.000000Z"}, {"uuid": "2044e1f0-1c18-4ab4-ac44-f8d83d4abc7f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-35186", "type": "seen", "source": "https://t.me/cibsecurity/20975", "content": "\u203c CVE-2020-35186 \u203c\n\nThe official adminer docker images before 4.7.0-fastcgi contain a blank password for a root user. System using the adminer docker container deployed by affected versions of the docker image may allow a remote attacker to achieve root access with a blank password.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-12-17T07:42:22.000000Z"}, {"uuid": "8f870033-11bd-4b3d-8b0e-2e9df110e860", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-35189", "type": "seen", "source": "https://t.me/cibsecurity/20967", "content": "\u203c CVE-2020-35189 \u203c\n\nThe official kong docker images before 1.0.2-alpine (Alpine specific) contain a blank password for a root user. System using the kong docker container deployed by affected versions of the docker image may allow a remote attacker to achieve root access with a blank password.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-12-17T07:42:14.000000Z"}]}