Charm Security Vulnerabilities (CVEs)
Track 3 security vulnerabilities affecting Charm products and software. Get instant email alerts when new CVEs are discovered, automated security monitoring, and patch guidance.
Soft Serve versions 0.11.2 and below have a critical authentication bypass vulnerability that allows attackers to impersonate any user, including admi...
Jan 22, 2026Soft Serve versions before 0.11.1 have a server-side request forgery (SSRF) vulnerability where repository administrators can create webhooks that tar...
Nov 10, 2025CVE-2025-22130 is a path traversal vulnerability in Soft Serve Git server that allows non-admin users to access and take over other users' repositorie...
Jan 8, 2025Why Monitor Charm Security Vulnerabilities?
Real-time CVE tracking: Our automated system monitors 3+ known vulnerabilities affecting Charm products and software packages. Stay ahead of emerging threats with instant email notifications when new security issues are discovered.
Automated security monitoring: Unlike manual CVE checking, FixTheCVE automatically scans your servers and detects vulnerable Charm packages in under 60 seconds. No agents required - completely agentless scanning that works across Charm deployments.
Free vulnerability database: Access detailed information about every Charm CVE including CVSS scores, severity ratings, affected versions, and actionable patch guidance. Filter by critical, high, medium, or low severity to prioritize your security remediation efforts.
🚀 Get Started in 60 Seconds
- Register free account & add your servers
- Run one-time scan or schedule automatic monitoring (every 1-24 hours)
- Receive instant alerts when new Charm CVEs affect your systems
- Access dashboard with severity breakdown & fix instructions
