Coder Security Vulnerabilities (CVEs)
Track 3 security vulnerabilities affecting Coder products and software. Get instant email alerts when new CVEs are discovered, automated security monitoring, and patch guidance.
CVE-2025-66411 is an information disclosure vulnerability in Coder where sensitive values in Workspace Agent manifests were logged in plaintext withou...
Dec 3, 2025code-server versions before 4.10.1 fail to validate WebSocket origin headers during handshakes, allowing attackers in specific network scenarios to by...
Mar 23, 2023CVE-2021-3810 is a regular expression denial-of-service (ReDoS) vulnerability in code-server's URL path validation. Attackers can craft malicious URLs...
Sep 17, 2021Why Monitor Coder Security Vulnerabilities?
Real-time CVE tracking: Our automated system monitors 3+ known vulnerabilities affecting Coder products and software packages. Stay ahead of emerging threats with instant email notifications when new security issues are discovered.
Automated security monitoring: Unlike manual CVE checking, FixTheCVE automatically scans your servers and detects vulnerable Coder packages in under 60 seconds. No agents required - completely agentless scanning that works across Coder deployments.
Free vulnerability database: Access detailed information about every Coder CVE including CVSS scores, severity ratings, affected versions, and actionable patch guidance. Filter by critical, high, medium, or low severity to prioritize your security remediation efforts.
🚀 Get Started in 60 Seconds
- Register free account & add your servers
- Run one-time scan or schedule automatic monitoring (every 1-24 hours)
- Receive instant alerts when new Coder CVEs affect your systems
- Access dashboard with severity breakdown & fix instructions
