4 matches found
CVE-2026-44848 Portainer: Missing authorization on Docker plugin endpoints allows host RCE
Portainer Community Edition is a lightweight service delivery platform for containerized applications that can be used to manage Docker, Swarm, Kubernetes and ACI environments. From 2.33.0 to before 2.33.8, 2.39.2, and 2.41.0, The Docker plugin management endpoints /plugins/ were not registered...
The vulnerability of the Role-Based Access Control (RBAC) function in the Portainer container management platform allows a perpetrator to disclose protected information.
The vulnerability of the Role-Based Access Control RBAC access control function in the Portainer container management platform is related to deficiencies in access restriction. Exploiting this vulnerability could allow a malicious actor, operating remotely, to disclose sensitive information...
The vulnerability of the Portainer container management platform, related to deficiencies in the authentication process, allows a perpetrator to gain full access to the file system.
The vulnerability of the Portainer container management platform is related to deficiencies in the authentication process. Exploiting this vulnerability allows a malicious actor to gain full access to the host’s file system through the host management API...
The vulnerability of the Portainer container management platform, related to deficiencies in access control, allows a hacker to gain full access to the host’s file system.
The vulnerability of the Portainer container management platform is related to deficiencies in access control. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain full access to the host’s file system...