Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
portainer portainer vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2024-33661
Portainer prior to 2.20.0 allows redirects when the target is not index.yaml.
NA
CVE-2024-29296
A user enumeration vulnerability was found in Portainer CE 2.19.4. This issue occurs during user authentication process, where a difference in response time could allow a remote unauthenticated user to determine if a username is valid or not.
1 Github repository
9.8
CVSSv3
CVE-2022-24961
In Portainer Agent prior to 2.11.1, an API server can continue running even if not associated with a Portainer instance in the past few days.
Portainer Portainer
7.5
CVSSv3
CVE-2021-41874
An unauthorized access vulnerabiitly exists in all versions of Portainer, which could let a malicious user obtain sensitive information. NOTE: Portainer has received no detail of this CVE report. There is also no response after multiple attempts of contacting the original source.
Portainer Portainer
6.1
CVSSv3
CVE-2021-42650
Cross Site Scripting (XSS vulnerability exists in Portainer prior to 2.9.1 via the node input box in Custom Templates.
Portainer Portainer
9.8
CVSSv3
CVE-2020-24264
Portainer 1.24.1 and previous versions is affected by incorrect access control that may lead to remote arbitrary code execution. The restriction checks for bind mounts are applied only on the client-side and not the server-side, which can lead to spawning a container with bind mo...
Portainer Portainer
8.8
CVSSv3
CVE-2020-24263
Portainer 1.24.1 and previous versions is affected by an insecure permissions vulnerability that may lead to remote arbitrary code execution. A non-admin user is allowed to spawn new containers with critical capabilities such as SYS_MODULE, which can be used to take over the Dock...
Portainer Portainer
7.5
CVSSv3
CVE-2019-16876
Portainer prior to 1.22.1 allows Directory Traversal.
Portainer Portainer
5.4
CVSSv3
CVE-2019-16878
Portainer prior to 1.22.1 has XSS (issue 2 of 2).
Portainer Portainer
9.9
CVSSv3
CVE-2019-16872
Portainer prior to 1.22.1 has Incorrect Access Control (issue 1 of 4).
Portainer Portainer
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »