Version 1.3.0 of the Weave Cloud Agent Docker image contains a blank password for the root user. Systems deployed using affected versions of the Weave Cloud Agent container may allow a remote malicious user to achieve root access with a blank password.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
weave cloud agent 1.3.0 |