Known Vulnerabilities for products from Portainer

Listed below are 16 of the newest known vulnerabilities associated with the vendor "Portainer".

These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.

Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.

Known Vulnerabilities

CVE Shortened Description Severity Publish Date Last Modified
CVE-2022-24961 In Portainer Agent before 2.11.1, an API server can continue running even if not associated with a Portainer instance in the ... 9.8 - CRITICAL 2022-02-11 2022-02-17
CVE-2021-42650 Cross Site Scripting (XSS vulnerability exists in Portainer before 2.9.1 via the node input box in Custom Templates. 6.1 - MEDIUM 2021-10-18 2021-10-21
CVE-2021-41874 An unauthorized access vulnerabiitly exists in all versions of Portainer, which could let a malicious user obtain sensitive i... 7.5 - HIGH 2021-10-29 2022-10-31
CVE-2021-41748 An Incorrect Access Control issue exists in all versions of Portainer.via an unauthorized access vulnerability. The vulnerabi... Not Provided 2021-10-29 2021-12-01
CVE-2020-24264 Portainer 1.24.1 and earlier is affected by incorrect access control that may lead to remote arbitrary code execution. The re... 9.8 - CRITICAL 2021-03-16 2021-03-23
CVE-2020-24263 Portainer 1.24.1 and earlier is affected by an insecure permissions vulnerability that may lead to remote arbitrary code exec... 8.8 - HIGH 2021-03-16 2021-03-23
CVE-2019-16878 Portainer before 1.22.1 has XSS (issue 2 of 2). 5.4 - MEDIUM 2019-11-07 2019-11-07
CVE-2019-16877 Portainer before 1.22.1 has Incorrect Access Control (issue 4 of 4). 8.8 - HIGH 2019-11-07 2020-08-24
CVE-2019-16876 Portainer before 1.22.1 allows Directory Traversal. 7.5 - HIGH 2019-11-07 2019-11-07
CVE-2019-16874 Portainer before 1.22.1 has Incorrect Access Control (issue 2 of 4). 6.5 - MEDIUM 2019-11-07 2020-08-24
CVE-2019-16873 Portainer before 1.22.1 has XSS (issue 1 of 2). 5.4 - MEDIUM 2019-11-07 2019-11-07
CVE-2019-16872 Portainer before 1.22.1 has Incorrect Access Control (issue 1 of 4). 9.9 - CRITICAL 2019-11-07 2020-08-24
CVE-2018-19466 A vulnerability was found in Portainer before 1.20.0. Portainer stores LDAP credentials, corresponding to a master password, ... 9.8 - CRITICAL 2019-03-27 2020-08-24
CVE-2018-19367 Portainer through 1.19.2 provides an API endpoint (/api/users/admin/check) to verify that the admin user is already created. ... 9.8 - CRITICAL 2018-11-20 2019-10-03
CVE-2018-16316 A stored Cross-site scripting (XSS) vulnerability in Portainer through 1.19.1 allows remote authenticated users to inject arb... 5.4 - MEDIUM 2018-09-01 2018-11-09
CVE-2018-12678 Portainer before 1.18.0 supports unauthenticated requests to the websocket endpoint with an unvalidated id query parameter fo... 9.8 - CRITICAL 2018-06-22 2018-08-13

Known software with vulnerabilities from Portainer

Type Vendor Product Version
ApplicationPortainerPortainer1.0.0

Popular searches for "Portainer"

Portainer | Open Source Container Management GUI for Kubernetes, Docker, Swarm

www.portainer.io

R NPortainer | Open Source Container Management GUI for Kubernetes, Docker, Swarm Portainer b ` ^ is the definitive open source container management GUI for Kubernetes, Docker, Swarm and ACI.

portainer.io/slack Docker (software) Kubernetes Graphical user interface Collection (abstract data type) Open-source software Application software Open source Digital container format 4th Dimension (software) Container (abstract data type) Software deployment Microsoft Azure Management Computer security Slack (software) YouTube Business Serverless computing Compute! Platform-specific model

portainer/portainer

github.com/portainer/portainer

ortainer/portainer Making Docker and Kubernetes management easy. Contribute to portainer GitHub.

github.com/cloud-inovasi/portainer GitHub Docker (software) Kubernetes Adobe Contribute Shareware Software license Computer security Command-line interface Digital container format Xcode Microsoft Visual Studio Repository (version control) Game demo Software repository Software development Software deployment Analytics User (computing) Software metric Computer cluster