CVE-2020-35467

Name of the Vulnerable Software and Affected Versions Docker Docs Docker image through 2020-12-14

Description The issue concerns a blank password for the root user in the Docker Docs Docker image. This could allow a remote attacker to achieve root access with a blank password, potentially compromising systems deployed using affected versions of the Docker Docs container.

Recommendations For Docker Docs Docker image through 2020-12-14, update the image to a version released after 2020-12-14 to ensure the root user password is properly set. As a temporary workaround, consider setting a strong password for the root user manually until an updated image is available. Restrict access to the Docker Docs container to minimize the risk of exploitation by a remote attacker.