Known Vulnerabilities for Portainer by Portainer

Listed below are 10 of the newest known vulnerabilities associated with "Portainer" by "Portainer".

These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.

Data on known vulnerable versions is also displayed based on information from known CPEs

Known Vulnerabilities

CVE Shortened Description Severity Publish Date Last Modified
CVE-2022-24961 In Portainer Agent before 2.11.1, an API server can continue running even if not associated with a Portainer instance in the ... 9.8 - CRITICAL 2022-02-11 2022-02-17
CVE-2021-42650 Cross Site Scripting (XSS vulnerability exists in Portainer before 2.9.1 via the node input box in Custom Templates. 6.1 - MEDIUM 2021-10-18 2021-10-21
CVE-2021-41874 ** DISPUTED ** An unauthorized access vulnerabiitly exists in all versions of Portainer, which could let a malicious user obt... 6.1 - MEDIUM 2021-10-29 2022-10-31
CVE-2021-41748 ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2021-41874. Reason: This candidate is a duplicate of CVE-2021-... Not Provided 2021-10-29 2021-12-01
CVE-2020-24264 Portainer 1.24.1 and earlier is affected by incorrect access control that may lead to remote arbitrary code execution. The re... 9.8 - CRITICAL 2021-03-16 2021-03-23
CVE-2020-24263 Portainer 1.24.1 and earlier is affected by an insecure permissions vulnerability that may lead to remote arbitrary code exec... 8.8 - HIGH 2021-03-16 2021-03-23
CVE-2019-16876 Portainer before 1.22.1 allows Directory Traversal. 7.5 - HIGH 2019-11-07 2019-11-07
CVE-2019-16874 Portainer before 1.22.1 has Incorrect Access Control (issue 2 of 4). 6.5 - MEDIUM 2019-11-07 2020-08-24
CVE-2019-16873 Portainer before 1.22.1 has XSS (issue 1 of 2). 5.4 - MEDIUM 2019-11-07 2019-11-07
CVE-2019-16872 Portainer before 1.22.1 has Incorrect Access Control (issue 1 of 4). 9.9 - CRITICAL 2019-11-07 2020-08-24

Known Affected Configurations (CPE V2.3)

Type Vendor Product Version Update Edition Language
ApplicationPortainerPortainer1.9.3AllAllAll
ApplicationPortainerPortainer1.9.2AllAllAll
ApplicationPortainerPortainer1.9.1AllAllAll
ApplicationPortainerPortainer1.9.0AllAllAll
ApplicationPortainerPortainer1.8.1AllAllAll
ApplicationPortainerPortainer1.8.0AllAllAll
ApplicationPortainerPortainer1.7.0AllAllAll
ApplicationPortainerPortainer1.6.0AllAllAll
ApplicationPortainerPortainer1.5.0AllAllAll
ApplicationPortainerPortainer1.4.0AllAllAll
ApplicationPortainerPortainer1.3.0AllAllAll
ApplicationPortainerPortainer1.22.1AllAllAll
ApplicationPortainerPortainer1.20.2AllAllAll
ApplicationPortainerPortainer1.20.1AllAllAll
ApplicationPortainerPortainer1.20.0AllAllAll
ApplicationPortainerPortainer1.2.0AllAllAll
ApplicationPortainerPortainer1.19.2AllAllAll
ApplicationPortainerPortainer1.19.1AllAllAll
ApplicationPortainerPortainer1.19.0AllAllAll
ApplicationPortainerPortainer1.18.1AllAllAll

Popular searches for Portainer

portainer/portainer

github.com/portainer/portainer

ortainer/portainer Making Docker and Kubernetes management easy. Contribute to portainer GitHub.

github.com/cloud-inovasi/portainer GitHub Docker (software) Kubernetes Adobe Contribute Shareware Git Software license Computer security Command-line interface Xcode Repository (version control) Software repository Game demo Apache Subversion URL Tag (metadata) Software deployment Visual Studio Code Software development Point of sale

Portainer | Open Source Container Management GUI for Kubernetes, Docker, Swarm

www.portainer.io

R NPortainer | Open Source Container Management GUI for Kubernetes, Docker, Swarm Portainer b ` ^ is the definitive open source container management GUI for Kubernetes, Docker, Swarm and ACI.

portainer.io/slack Docker (software) Kubernetes Graphical user interface Collection (abstract data type) Open-source software Application software Open source Digital container format Container (abstract data type) Software deployment Microsoft Azure 4th Dimension (software) Management Slack (software) Computer security Business YouTube Serverless computing IBM WebSphere Application Server Community Edition Compute!

© CVE.report 2022 Twitter Nitter Twitter Viewer |

Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.

CVE, CWE, and OVAL are registred trademarks of The MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. This site includes MITRE data granted under the following license.

CVE.report and Source URL Uptime Status status.cve.report