📦 Portainer

CVE-2024-33661 is a URL redirection vulnerability in Portainer before version 2.20.0, allowing attackers to redirect users to malicious sites when the target is not index.yaml. This affects all users ...

Portainer Agent versions before 2.11.1 contain a vulnerability where the API server continues running even after losing connection to the Portainer management instance for several days. This allows un...

CVE-2020-24264 is an access control vulnerability in Portainer that allows authenticated users to bypass bind mount restrictions and execute arbitrary code on the Docker host. This affects Portainer 1...

Portainer before version 2.20.2 uses an improper encryption algorithm in its AesEncrypt function, potentially allowing attackers to decrypt sensitive data. This affects all Portainer deployments using...

CVE-2020-24263 is an insecure permissions vulnerability in Portainer that allows non-admin users to create Docker containers with dangerous capabilities like SYS_MODULE. This can lead to complete comp...