minio Summary
Latest vulnerabilities published by minio
Vulnerability Published:
ποΈ Published
- Anytime
Sort By:
ποΈ Published Date
- Descending
IAM Authentication Vulnerability in MinIO Operator for Kubernetes
CVE-2025-32963MinioOperator6.9MEDIUMAuthorization Flaw in MinIO Object Storage by MinIO
CVE-2025-31489MinioMinio8.7HIGHSSH Key Authentication Bypass Vulnerability in MinIO Object Storage
CVE-2025-27414MinioMinio4.6MEDIUMPrivilege Escalation Vulnerability in MinIO Object Storage Solution
CVE-2024-55949MinIOAnonymous Requests Can Bypass Metadata Validation in MinIO
CVE-2024-36107MinioMinio5.3MEDIUMInherited Permissions Vulnerability in MinIO Could Allow Overriding of Access Controls
CVE-2024-24747MinioMinioEPSS 21%8.8HIGHMinio console object names with RIGHT-TO-LEFT OVERRIDE unicode character can be exploited
CVE-2023-33955minioconsole5.3MEDIUMMinio Information Disclosure in Cluster Deployment
CVE-2023-28432MinioMinioπΎπ‘EPSS 93%π¦ 7.5HIGHMinio Privilege Escalation on Windows via Path separator manipulation
CVE-2023-28433MinioMinio8.8HIGHMinIO is vulnerable to privilege escalation on Linux/MacOS
CVE-2023-28434MinioMinioπΎπ‘EPSS 33%π¦ π°8.8HIGHMinio vulnerable to denial of access by an admin privileged user for root credential
CVE-2023-27589MinioMinio6.5MEDIUMAllowed DELETE on resources on object locked buckets under Governance mode in Minio
CVE-2023-25812MinioMinio6.5MEDIUMAuthenticated requests for server update admin API allows path traversal in minio
CVE-2022-35919MinioMinioπΎπ‘7.4HIGHPossible DDOS by establishing keep-alive connections with anonymous HTTP clients in MinIO
CVE-2022-31028MinioMinio7.5HIGHImproper Privilege Management in MinIO
CVE-2022-24842MinioMinio8.8HIGHUser privilege escalation in MinIO
CVE-2021-43858MinioMinioπΎπ‘EPSS 47%8.8HIGHAuthentication bypass issue in the Operator Console
CVE-2021-41266MinioConsoleEPSS 79%8.6HIGHBypassing policy restrictions on regular users
CVE-2021-41137MinioMinio8.8HIGHMITM modification of request bodies in MinIO
CVE-2021-21390MinioMinio6.5MEDIUMBypassing readOnly policy by creating a temporary 'mc share upload' URL
CVE-2021-21362MinioMinio7.7HIGHServer-Side Request Forgery in MinIO Browser API
CVE-2021-21287MinioMinioEPSS 92%7.7HIGHAuthentication bypass MinIO Admin API
CVE-2020-11012MinioMinio9.3CRITICALMemory Allocation Vulnerability in Minio S3 Server by Minio Inc.
CVE-2018-1000538MinioMinio7.5HIGH
22 April 2025
3 April 2025
28 February 2025
16 December 2024
28 May 2024
31 January 2024
30 May 2023
22 March 2023
14 March 2023
21 February 2023
1 August 2022
7 June 2022
12 April 2022
27 December 2021
15 November 2021
13 October 2021
19 March 2021
8 March 2021
1 February 2021
23 April 2020
26 June 2018
No more vulnerabilities to load.