Known Vulnerabilities for Multipass by Canonical
Listed below are 2 of the newest known vulnerabilities associated with "Multipass" by "Canonical".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-49238 json | An issue was discovered in Canonical Multipass before version 1.16.3. The host-side SFTP server component (sshfs_server), whi... | Not Provided | 2026-05-28 | 2026-05-28 |
| CVE-2026-49237 json | An issue was discovered in Canonical Multipass for macOS before version 1.16.3 due to an incomplete fix for CVE-2025-5199. Wh... | Not Provided | 2026-05-28 | 2026-05-28 |
| CVE-2021-3747 json | The MacOS version of Multipass, version 1.7.0, fixed in 1.7.2, accidentally installed the application directory with incorrec... | 7.8 - HIGH | 2021-10-01 | 2022-10-25 |
| CVE-2021-3626 json | The Windows version of Multipass before 1.7.0 allowed any local process to connect to the localhost TCP control socket to per... | 8.8 - HIGH | 2021-10-01 | 2022-10-27 |