PT-2020-17205 · Influxdata · Kapacitor

Published

2020-12-11

Updated

2021-01-04

CVE-2020-29589

None

No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.

Name of the Vulnerable Software and Affected Versions kapacitor versions through 1.5.0-alpine

Description The issue concerns a blank password for the root user in the Official kapacitor Docker images. This could allow a remote attacker to gain root access with a blank password, potentially affecting systems deployed using the affected container versions.

Recommendations For versions through 1.5.0-alpine, update the root user password to a secure value to prevent unauthorized access. Consider restricting access to the container until the issue is resolved.

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2020-29589

Affected Products

Kapacitor

PT-2020-17205 · Influxdata · Kapacitor

CVE-2020-29589

Related Identifiers

Affected Products

References · 12