CNNVD-202509-128 Information

CNNVD ID

CNNVD-202509-128

Related CVE

CVE-2025-9276

• CNNVD Published: 2025-09-02

Description (Chinese)

Cockroach Labs cockroach-k8s-request-cert是Cockroach Labs公司的一个容器镜像。 Cockroach Labs cockroach-k8s-request-cert存在安全漏洞，该漏洞源于空root密码设置，可能导致认证绕过。

Description (English)

Cockroach Labs cockroach-k8s-request-cert is a container mirror of Cockroach Labs. Cockroach Labs cockroach-k8s-request-cert has a security loophole, which originates from an empty root password setting and may lead to the authentication bypass.

Hazard Level

Low

Vulnerability Type

其他

Affected Vendor

Cockroach Labs

Published

2025-09-02

Last Modified

2026-02-24

References

https://www.zerodayinitiative.com/advisories/ZDI-25-855/ https://nvd.nist.gov/vuln/detail/CVE-2025-9276