CVE-2020-35193 is a vulnerability in SonarSource Sonarqube Docker Image
Published on December 16, 2020

The official sonarqube docker images before alpine (Alpine specific) contain a blank password for a root user. System using the sonarqube docker container deployed by affected versions of the docker image may allow a remote attacker to achieve root access with a blank password.

NVD

Products Associated with CVE-2020-35193

Want to know whenever a new CVE is published for SonarSource Sonarqube Docker Image? stack.watch will email you.

SonarSource Sonarqube Docker Image

Exploit Probability

EPSS

2.01%

Percentile

84.02%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2020-35193 is a vulnerability in SonarSource Sonarqube Docker ImagePublished on December 16, 2020

Products Associated with CVE-2020-35193

Exploit Probability

CVE-2020-35193 is a vulnerability in SonarSource Sonarqube Docker Image
Published on December 16, 2020