Lucene search
K

295 matches found

CNNVD
CNNVD
added 2026/05/28 12:0 a.m.10 views

Portainer 安全漏洞

Portainer is a lightweight user management interface developed by Portainer for managing Docker environments and Docker hosts. There were security vulnerabilities in versions of Portainer from 2.33.0 to 2.33.8, as well as in versions prior to 2.39.2 and 2.41.0. These vulnerabilities stemmed from...

8.5CVSS5.8AI score0.00206EPSS
Exploits1References1
CNNVD
CNNVD
added 2026/05/28 12:0 a.m.20 views

Portainer 安全漏洞

Portainer is a lightweight user management interface developed by Portainer Foundation for managing Docker environments and Docker hosts. There were security vulnerabilities in versions of Portainer Community Edition from 2.33.0 to 2.33.8, as well as in versions prior to 2.39.2 and 2.41.0. These...

9.4CVSS5.8AI score0.00347EPSS
Exploits1References1
CNNVD
CNNVD
added 2026/05/28 12:0 a.m.14 views

Portainer 信息泄露漏洞

Portainer is a lightweight user management interface developed by Portainer for managing Docker environments and Docker hosts. Versions of Portainer Community Edition prior to 2.33.8, 2.39.2, and 2.41.0 contained an information leakage vulnerability. This vulnerability occurred when creating or...

9.9CVSS5.9AI score0.00416EPSS
Exploits2References1
CNNVD
CNNVD
added 2026/05/28 12:0 a.m.10 views

Portainer 安全漏洞

Portainer is a lightweight user management interface developed by Portainer for managing Docker environments and Docker hosts. Versions of Portainer Community Edition from 2.33.0 to 2.33.8 contained security vulnerabilities. These vulnerabilities stemmed from the kubeClientMiddleware middleware...

8.1CVSS5.8AI score0.00335EPSS
Exploits1References2
Redos
Redos
added 2026/05/24 12:0 a.m.16 views

ROS-20260524-73-0057

Vulnerability in portainer-ce related to access control flaws. Exploitation of the vulnerability could allow an attacker to escalate their privileges...

8.1CVSS5.8AI score0.00335EPSS
Exploits1
Veracode
Veracode
added 2026/05/16 5:33 a.m.7 views

Arbitrary File Read

Portainer Community Edition is vulnerable to Arbitrary File Read. The vulnerability is due to improper handling of symbolic links in Git-backed stack repositories, where symlinked stack files are created without validation and later followed during file reads, allowing authenticated attackers to...

9.9CVSS5.9AI score0.00416EPSS
Exploits2References3Affected Software1
Veracode
Veracode
added 2026/05/16 5:31 a.m.4 views

Missing Authorization

github.com/portainer/portainer is vulnerable to Missing Authorization. The vulnerability is due to missing authorization handlers for the Docker plugin management endpoints, which allows a non-admin user with endpoint-level access to perform privileged plugin operations directly against the...

9.4CVSS5.8AI score0.00328EPSS
Exploits1References4Affected Software1
Veracode
Veracode
added 2026/05/16 5:23 a.m.4 views

Improper Enforcement Of Security Restrictions

github.com/portainer/portainer is vulnerable to improper enforcement of security restrictions. The vulnerability is due to inconsistent enforcement of configured EndpointSecuritySettings on the Docker Swarm service API, which allows an attacker to bypass administrator-defined container security...

9.4CVSS5.8AI score0.00347EPSS
Exploits1References7Affected Software1
Veracode
Veracode
added 2026/05/16 5:23 a.m.5 views

Sensitive Information Exposure

Portainer Community Edition is vulnerable to Exposure of Sensitive Information. The vulnerability is due to the authentication middleware accepting JWT bearer tokens through the ?token= URL query parameter, which allows an attacker to obtain authentication tokens from browser history, proxy logs,...

7.7CVSS5.8AI score0.00316EPSS
Exploits1References4Affected Software1
OSV
OSV
added 2026/05/14 4:34 p.m.9 views

GHSA-CQPQ-2FGR-8MVC Portainer missing authorization on custom template file endpoint, which exposes template content

Summary A missing authorization vulnerability in the Custom Template file endpoint GET /api/customtemplates/id/file allows any authenticated user to read the file content of any custom template by enumerating sequential integer IDs, bypassing Resource Control access restrictions. Template files m...

6.5CVSS5.7AI score0.00257EPSS
Exploits1References5
Github Security Blog
Github Security Blog
added 2026/05/14 4:33 p.m.8 views

Portainer: JWT accepted in URL query leaks tokens to logs and referers

Summary Portainer's authentication middleware accepts JWT bearer tokens passed as the ?token= URL query parameter on any authenticated API endpoint, in addition to the standard Authorization: Bearer header. URLs are recorded in reverse-proxy access logs, browser history, and HTTP Referer headers ...

7.7CVSS5.8AI score0.00316EPSS
Exploits1References6Affected Software1
OSV
OSV
added 2026/05/14 4:33 p.m.3 views

GHSA-JVP4-Q659-95MJ Portainer: JWT accepted in URL query leaks tokens to logs and referers

Summary Portainer's authentication middleware accepts JWT bearer tokens passed as the ?token= URL query parameter on any authenticated API endpoint, in addition to the standard Authorization: Bearer header. URLs are recorded in reverse-proxy access logs, browser history, and HTTP Referer headers ...

7.7CVSS5.8AI score0.00316EPSS
Exploits1References6
Github Security Blog
Github Security Blog
added 2026/05/14 4:33 p.m.11 views

Portainer has an endpoint security bypass via Swarm service create/update

Summary Portainer enforces seven EndpointSecuritySettings restrictions that administrators configure to restrict the container configurations non-admin users can launch: privileged mode, host PID namespace, device mapping, capabilities, sysctls, security-opt Seccomp / AppArmor, and bind mounts. T...

9.4CVSS5.8AI score0.00347EPSS
Exploits1References6Affected Software1
OSV
OSV
added 2026/05/14 4:33 p.m.8 views

GHSA-5FXQ-QCF3-244W Portainer has an endpoint security bypass via Swarm service create/update

Summary Portainer enforces seven EndpointSecuritySettings restrictions that administrators configure to restrict the container configurations non-admin users can launch: privileged mode, host PID namespace, device mapping, capabilities, sysctls, security-opt Seccomp / AppArmor, and bind mounts. T...

9.4CVSS5.8AI score0.00347EPSS
Exploits1References6
Snyk
Snyk
added 2026/05/14 4:33 p.m.13 views

Missing Authorization

Overview github.com/portainer/portainer/api/http/proxy/factory/docker is a management UI which allows to manage different Docker environments. Affected versions of this package are vulnerable to Missing Authorization in the enforcement of endpoint security restrictions for non-admin users on Dock...

9.9CVSS5.7AI score0.00347EPSS
Exploits1References2
Github Security Blog
Github Security Blog
added 2026/05/14 4:24 p.m.11 views

Portainer's Kubernetes middleware continues after token validation failure, bypassing endpoint authorization

Summary Portainer proxies requests to Kubernetes clusters through a middleware layer kubeClientMiddleware that validates the requesting user's token before forwarding traffic to the cluster. When security.RetrieveTokenData returned an error, the middleware wrote an HTTP 403 response but was missi...

8.1CVSS5.9AI score0.00335EPSS
Exploits1References4Affected Software1
OSV
OSV
added 2026/05/14 4:24 p.m.6 views

GHSA-MGQ6-4X29-88R3 Portainer's Kubernetes middleware continues after token validation failure, bypassing endpoint authorization

Summary Portainer proxies requests to Kubernetes clusters through a middleware layer kubeClientMiddleware that validates the requesting user's token before forwarding traffic to the cluster. When security.RetrieveTokenData returned an error, the middleware wrote an HTTP 403 response but was missi...

8.1CVSS5.9AI score0.00335EPSS
Exploits1References4
OSV
OSV
added 2026/05/14 4:23 p.m.7 views

GHSA-RPGQ-M5FP-32WR Portainer Has an Arbitrary File Read via Git Symlink Injection in Stack Auto-Update

Summary Portainer supports deploying stacks from Git repositories. When a Git-backed stack is created or updated, Portainer clones the repository using go-git v5, which translates Git blob entries with mode 0o120000 symlink into real OS symlinks on the host filesystem via os.Symlink. The only ent...

9.9CVSS5.9AI score0.00416EPSS
Exploits2References6
Github Security Blog
Github Security Blog
added 2026/05/14 4:23 p.m.20 views

Portainer Has an Arbitrary File Read via Git Symlink Injection in Stack Auto-Update

Summary Portainer supports deploying stacks from Git repositories. When a Git-backed stack is created or updated, Portainer clones the repository using go-git v5, which translates Git blob entries with mode 0o120000 symlink into real OS symlinks on the host filesystem via os.Symlink. The only ent...

9.9CVSS5.9AI score0.00416EPSS
Exploits2References6Affected Software1
Github Security Blog
Github Security Blog
added 2026/05/14 4:23 p.m.11 views

Portainer has a bind-mount restriction bypass via HostConfig.Mounts

Summary Portainer offers an environment-level Disable bind mounts for non-administrators security setting that blocks regular users from binding host paths into containers they create through the Portainer-mediated Docker API. The check that enforces this setting only inspected the legacy...

8.5CVSS5.8AI score0.00206EPSS
Exploits1References6Affected Software1
Rows per page
Query Builder