Skip to main content

Portainer

15 CVEs tool

Monthly

CVE-2026-55761 HIGH PATCH This Week

Authentication bypass in Portainer Community Edition (2.39.0-2.39.3 and 2.40.0 through 2.42.x) lets an unauthenticated network attacker seize full administrative control of a freshly deployed, uninitialized instance. During the five-minute post-deployment setup window the /api/restore and /api/users/admin/init endpoints stay reachable without credentials, so an attacker who wins the race can create the first admin account or restore a crafted backup and take over the platform along with every Docker, Swarm, Kubernetes and ACI environment it manages. No public exploit identified at time of analysis and it is not on CISA KEV, but the fix is available in 2.39.4 and 2.43.0.

Authentication Bypass Kubernetes Docker Portainer
NVD GitHub VulDB
CVSS 4.0
7.1
EPSS
0.3%
CVE-2026-33590 HIGH PATCH This Week

Privilege escalation in Portainer Community Edition stems from permissive default endpoint security settings that grant non-admin users with endpoint access the ability to create containers with bind mounts, privileged mode, host namespaces, device mappings, sysctl settings, and Linux capabilities. An authenticated low-privilege user can leverage these defaults to read arbitrary host files or break out of the container boundary to achieve root-equivalent code execution on the Docker host. Publicly available exploit code exists per CVSS v4.0 threat metrics (E:P), but the issue is not listed in CISA KEV.

Privilege Escalation RCE Portainer Community Edition Portainer
NVD GitHub VulDB
CVSS 4.0
8.5
EPSS
0.1%
CVE-2024-33662 Go HIGH PATCH This Week

Portainer before 2.20.2 improperly uses an encryption algorithm in the AesEncrypt function. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable. No vendor patch available.

Information Disclosure Portainer
NVD GitHub
CVSS 3.1
7.5
EPSS
0.3%
CVE-2024-33661 CRITICAL PATCH Act Now

Portainer before 2.20.0 allows redirects when the target is not index.yaml. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Open Redirect vulnerability could allow attackers to redirect users to malicious websites via URL manipulation.

Open Redirect Portainer
NVD GitHub
CVSS 3.1
9.1
EPSS
0.6%
CVE-2024-29296 MEDIUM POC This Month

A user enumeration vulnerability was found in Portainer CE 2.19.4. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Portainer
NVD GitHub VulDB
CVSS 3.1
5.3
EPSS
1.3%
CVE-2021-42650 MEDIUM PATCH This Month

Cross Site Scripting (XSS vulnerability exists in Portainer before 2.9.1 via the node input box in Custom Templates. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Cross-Site Scripting (XSS) vulnerability could allow attackers to inject malicious scripts into web pages viewed by other users.

XSS Portainer
NVD GitHub
CVSS 3.1
6.1
EPSS
0.6%
CVE-2019-16878 MEDIUM This Month

Portainer before 1.22.1 has XSS (issue 2 of 2). Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Portainer
NVD
CVSS 3.1
5.4
EPSS
0.5%
CVE-2019-16877 HIGH This Week

Portainer before 1.22.1 has Incorrect Access Control (issue 4 of 4). Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Portainer
NVD
CVSS 3.1
8.8
EPSS
1.0%
CVE-2019-16876 HIGH This Week

Portainer before 1.22.1 allows Directory Traversal. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Path Traversal Portainer
NVD
CVSS 3.1
7.5
EPSS
1.4%
CVE-2019-16872 CRITICAL Act Now

Portainer before 1.22.1 has Incorrect Access Control (issue 1 of 4). Rated critical severity (CVSS 9.9), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Portainer
NVD
CVSS 3.1
9.9
EPSS
1.4%
CVE-2019-16874 MEDIUM This Month

Portainer before 1.22.1 has Incorrect Access Control (issue 2 of 4). Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Portainer
NVD
CVSS 3.1
6.5
EPSS
0.9%
CVE-2019-16873 MEDIUM This Month

Portainer before 1.22.1 has XSS (issue 1 of 2). Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Portainer
NVD
CVSS 3.1
5.4
EPSS
0.5%
CVE-2018-19367 CRITICAL POC Act Now

Portainer through 1.19.2 provides an API endpoint (/api/users/admin/check) to verify that the admin user is already created. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Portainer
NVD GitHub
CVSS 3.0
9.8
EPSS
1.5%
CVE-2018-16316 MEDIUM PATCH This Month

A stored Cross-site scripting (XSS) vulnerability in Portainer through 1.19.1 allows remote authenticated users to inject arbitrary JavaScript and/or HTML via the Team Name field. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity.

XSS Portainer
NVD GitHub
CVSS 3.0
5.4
EPSS
0.8%
CVE-2018-12678 CRITICAL PATCH Act Now

Portainer before 1.18.0 supports unauthenticated requests to the websocket endpoint with an unvalidated id query parameter for the /websocket/exec endpoint, which allows remote attackers to bypass. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Server-Side Request Forgery (SSRF) vulnerability could allow attackers to make the server perform requests to unintended internal or external resources.

SSRF Portainer
NVD GitHub
CVSS 3.0
9.8
EPSS
2.3%
EPSS 0% CVSS 7.1
HIGH PATCH This Week

Authentication bypass in Portainer Community Edition (2.39.0-2.39.3 and 2.40.0 through 2.42.x) lets an unauthenticated network attacker seize full administrative control of a freshly deployed, uninitialized instance. During the five-minute post-deployment setup window the /api/restore and /api/users/admin/init endpoints stay reachable without credentials, so an attacker who wins the race can create the first admin account or restore a crafted backup and take over the platform along with every Docker, Swarm, Kubernetes and ACI environment it manages. No public exploit identified at time of analysis and it is not on CISA KEV, but the fix is available in 2.39.4 and 2.43.0.

Authentication Bypass Kubernetes Docker +1
NVD GitHub VulDB
EPSS 0% CVSS 8.5
HIGH PATCH This Week

Privilege escalation in Portainer Community Edition stems from permissive default endpoint security settings that grant non-admin users with endpoint access the ability to create containers with bind mounts, privileged mode, host namespaces, device mappings, sysctl settings, and Linux capabilities. An authenticated low-privilege user can leverage these defaults to read arbitrary host files or break out of the container boundary to achieve root-equivalent code execution on the Docker host. Publicly available exploit code exists per CVSS v4.0 threat metrics (E:P), but the issue is not listed in CISA KEV.

Privilege Escalation RCE Portainer Community Edition +1
NVD GitHub VulDB
EPSS 0% CVSS 7.5
HIGH PATCH This Week

Portainer before 2.20.2 improperly uses an encryption algorithm in the AesEncrypt function. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable. No vendor patch available.

Information Disclosure Portainer
NVD GitHub
EPSS 1% CVSS 9.1
CRITICAL PATCH Act Now

Portainer before 2.20.0 allows redirects when the target is not index.yaml. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Open Redirect vulnerability could allow attackers to redirect users to malicious websites via URL manipulation.

Open Redirect Portainer
NVD GitHub
EPSS 1% CVSS 5.3
MEDIUM POC This Month

A user enumeration vulnerability was found in Portainer CE 2.19.4. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Portainer
NVD GitHub VulDB
EPSS 1% CVSS 6.1
MEDIUM PATCH This Month

Cross Site Scripting (XSS vulnerability exists in Portainer before 2.9.1 via the node input box in Custom Templates. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Cross-Site Scripting (XSS) vulnerability could allow attackers to inject malicious scripts into web pages viewed by other users.

XSS Portainer
NVD GitHub
EPSS 1% CVSS 5.4
MEDIUM This Month

Portainer before 1.22.1 has XSS (issue 2 of 2). Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Portainer
NVD
EPSS 1% CVSS 8.8
HIGH This Week

Portainer before 1.22.1 has Incorrect Access Control (issue 4 of 4). Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Portainer
NVD
EPSS 1% CVSS 7.5
HIGH This Week

Portainer before 1.22.1 allows Directory Traversal. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Path Traversal Portainer
NVD
EPSS 1% CVSS 9.9
CRITICAL Act Now

Portainer before 1.22.1 has Incorrect Access Control (issue 1 of 4). Rated critical severity (CVSS 9.9), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Portainer
NVD
EPSS 1% CVSS 6.5
MEDIUM This Month

Portainer before 1.22.1 has Incorrect Access Control (issue 2 of 4). Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Portainer
NVD
EPSS 1% CVSS 5.4
MEDIUM This Month

Portainer before 1.22.1 has XSS (issue 1 of 2). Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Portainer
NVD
EPSS 1% CVSS 9.8
CRITICAL POC Act Now

Portainer through 1.19.2 provides an API endpoint (/api/users/admin/check) to verify that the admin user is already created. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Portainer
NVD GitHub
EPSS 1% CVSS 5.4
MEDIUM PATCH This Month

A stored Cross-site scripting (XSS) vulnerability in Portainer through 1.19.1 allows remote authenticated users to inject arbitrary JavaScript and/or HTML via the Team Name field. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity.

XSS Portainer
NVD GitHub
EPSS 2% CVSS 9.8
CRITICAL PATCH Act Now

Portainer before 1.18.0 supports unauthenticated requests to the websocket endpoint with an unvalidated id query parameter for the /websocket/exec endpoint, which allows remote attackers to bypass. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Server-Side Request Forgery (SSRF) vulnerability could allow attackers to make the server perform requests to unintended internal or external resources.

SSRF Portainer
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy