Portainer: >> Portainer >> 2.19.4 Security Vulnerabilities
Portainer before 2.20.2 improperly uses an encryption algorithm in the AesEncrypt function.
CVSS Score
7.5
EPSS Score
0.0
Published
2024-10-02
Portainer before 2.20.0 allows redirects when the target is not index.yaml.
CVSS Score
9.1
EPSS Score
0.001
Published
2024-04-26
A user enumeration vulnerability was found in Portainer CE 2.19.4. This issue occurs during user authentication process, where a difference in response time could allow a remote unauthenticated user to determine if a username is valid or not.
CVSS Score
5.3
EPSS Score
0.101
Published
2024-04-10
An unauthorized access vulnerabiitly exists in all versions of Portainer, which could let a malicious user obtain sensitive information. NOTE: Portainer has received no detail of this CVE report. There is also no response after multiple attempts of contacting the original source.
CVSS Score
7.5
EPSS Score
0.004
Published
2021-10-29