Server Security Vulnerabilities and Issues — Server CVE List

Lucene search

BitwardenServer

2 matches found

CVE•added 2019/12/12 7:15 p.m.•37 views

CVE-2019-19766

The Bitwarden server through 1.32.0 has a potentially unwanted KDF.

7.5CVSS7.5AI score0.00364EPSS

CVE•added 2020/07/21 5:15 p.m.•29 views

CVE-2020-15879

Bitwarden Server 1.35.1 allows SSRF because it does not consider certain IPv6 addresses (ones beginning with fc, fd, fe, or ff, and the :: address) and certain IPv4 addresses (0.0.0.0/8, 127.0.0.0/8, and 169.254.0.0/16).

7.5CVSS7.5AI score0.00312EPSS