CVE-2020-35466

Name of the Vulnerable Software and Affected Versions Blackfire Docker image through 2020-12-14

Description The issue concerns a blank password for the root user in the Blackfire Docker image. This could allow a remote attacker to achieve root access with a blank password, potentially compromising systems deployed using affected versions of the Blackfire container.

Recommendations For Blackfire Docker image versions through 2020-12-14, update the root user password to a secure value to prevent unauthorized access. Consider restricting access to the container until the password can be updated.