vantage6 Summary
Latest vulnerabilities published by vantage6
Vulnerability Published:
ποΈ Published
- Anytime
Sort By:
ποΈ Published Date
- Descending
Predictable JWT Secret Key in Vantage6 Open-Source Infrastructure
CVE-2025-43866Vantage6Vantage61.7LOWPassword Brute-Force Vulnerability in Vantage6 Framework by Vantage6
CVE-2025-43863Vantage6Vantage61.7LOWPrivacy-Preserving Collaboration Vulnerability Discovered and Patched
CVE-2024-32969Vantage6Vantage62.7LOWSecurity Headers Not Set in Affected Versions of vantage6-UI
CVE-2024-24562Vantage6Vantage6-ui5.3MEDIUMvantage6 Server Vulnerability: No Restrictions on CORS Settings Could Lead to Session Cookie Theft
CVE-2024-23823Vantage6Vantage66.5MEDIUMVantage6 API Routes Vulnerable to Password and MFA Token Retrieval
CVE-2024-24770Vantage6Vantage65.3MEDIUMRemote code execution
CVE-2024-21649Vantage6Vantage68.8HIGHvantage6 insecure SSH configuration for node and server containers
CVE-2024-21653vantage6vantage69.8CRITICALvantage6 username timing attack
CVE-2024-21671Vantage6Vantage63.7LOWvantage6 unencrypted task can be created in encrypted collaboration
CVE-2024-22193Vantage6Vantage63.5LOWvantage6-UI docker image leaks software version information
CVE-2024-22200Vantage6Vantage6-ui3.3LOWvantage6 Node accepts non-whitelisted algorithms from malicious server
CVE-2023-47631vantage6vantage68.8HIGHDefining resource name as integer in vantage6 may give unintended access
CVE-2023-28635vantage6vantage65.4MEDIUMDeleting a collaboration should also delete linked resources
CVE-2023-41881vantage6vantage64.3MEDIUMvantage6 Improper Access Control vulnerability
CVE-2023-41882vantage6vantage64.3MEDIUMvantage6's Pickle serialization is insecure
CVE-2023-23930Vantage6Vantage65.5MEDIUMRefresh tokens do not expire in Vantage6
CVE-2023-23929Vantage6Vantage68.8HIGHImproper Preservation of Permissions in vantage6
CVE-2023-22738Vantage6Vantage66.3MEDIUMObservable Response Discrepancy in vantage6
CVE-2022-39228Vantage6Vantage65.3MEDIUM