portainer 関連製品全体の CVE とセキュリティ脆弱性情報を集約し、CVSS、EPSS、公開日、脆弱性情報データを掲載しています。
過去の問題は主に vendor risk cross-site scripting and パス処理の欠陥 などに関し、一部は ファイル上書き を招き、vendor surface production workloads and vendor surface software deployment 関連の場面に影響します。
掲載データは公開脆弱性情報とセキュリティ公告に基づき、過去の暴露面と修補優先度の評価に利用できます。
| CVE | 概要 | ソース | CVSS 最大値 | EPSS(%) | 公開 | 更新 |
|---|---|---|---|---|---|---|
| CVE-2026-44885 | Portainer Community Edition is a lightweight service delivery platform for containerized applications that can be used to manage Docker, Swarm, Kubernetes and ACI environments. From 2.33.0 to before 2.33.8, Portainer's backup restore feature accepts a .tar.gz archive and extracts it to a target directory on the server. The extraction function (ExtractTarGz in api/archive/targz.go) constructed output paths using filepath.Clean(filepath.Join(outputDirPath, header.Name)). This combination does not | [email protected] | 5.5 | 0.29% | 2026-05-28 | 2026-06-01 |
| CVE-2026-44884 | Portainer Community Edition is a lightweight service delivery platform for containerized applications that can be used to manage Docker, Swarm, Kubernetes and ACI environments. From 2.33.0 to before 2.33.8 and 2.39.1, a missing authorization vulnerability in the Custom Template file endpoint (GET /api/custom_templates/{id}/file) allows any authenticated user to read the file content of any custom template by enumerating sequential integer IDs, bypassing Resource Control access restrictions. Temp | [email protected] | 6.0 | 0.04% | 2026-05-28 | 2026-06-01 |
| CVE-2026-44883 | Portainer Community Edition is a lightweight service delivery platform for containerized applications that can be used to manage Docker, Swarm, Kubernetes and ACI environments. From 2.33.0 to before 2.33.8, 2.39.2, and 2.41.0, Portainer's authentication middleware accepts JWT bearer tokens passed as the ?token=<JWT> URL query parameter on any authenticated API endpoint, in addition to the standard Authorization: Bearer header. URLs are recorded in reverse-proxy access logs, browser history, and | [email protected] | 7.7 | 0.06% | 2026-05-28 | 2026-06-02 |
| CVE-2026-44882 | Portainer Community Edition is a lightweight service delivery platform for containerized applications that can be used to manage Docker, Swarm, Kubernetes and ACI environments. From 2.33.0 to before 2.33., Portainer proxies requests to Kubernetes clusters through a middleware layer (kubeClientMiddleware) that validates the requesting user's token before forwarding traffic to the cluster. When security.RetrieveTokenData returned an error, the middleware wrote an HTTP 403 response but was missing | [email protected] | 8.1 | 0.05% | 2026-05-28 | 2026-06-01 |
| CVE-2026-44881 | Portainer Community Edition is a lightweight service delivery platform for containerized applications that can be used to manage Docker, Swarm, Kubernetes and ACI environments. From 2.33.0 to before 2.33.8, 2.39.2, and 2.41.0, Portainer supports deploying stacks from Git repositories. When a Git-backed stack is created or updated, Portainer clones the repository using go-git v5, which translates Git blob entries with mode 0o120000 (symlink) into real OS symlinks on the host filesystem via os.Sym | [email protected] | 8.5 | 0.06% | 2026-05-28 | 2026-06-01 |
| CVE-2026-44850 | Portainer Community Edition is a lightweight service delivery platform for containerized applications that can be used to manage Docker, Swarm, Kubernetes and ACI environments. From 2.33.0 to before 2.33.8, 2.39.2, and 2.41.0, Portainer offers an environment-level Disable bind mounts for non-administrators security setting that blocks regular users from binding host paths into containers they create through the Portainer-mediated Docker API. The check that enforces this setting only inspected th | [email protected] | 8.5 | 0.03% | 2026-05-28 | 2026-06-01 |
| CVE-2026-44849 | Portainer Community Edition is a lightweight service delivery platform for containerized applications that can be used to manage Docker, Swarm, Kubernetes and ACI environments. From 2.33.0 to before 2.33.8, 2.39.2, and 2.41.0, Portainer enforces seven EndpointSecuritySettings restrictions that administrators configure to restrict the container configurations non-admin users can launch: privileged mode, host PID namespace, device mapping, capabilities, sysctls, security-opt (Seccomp / AppArmor), | [email protected] | 9.4 | 0.05% | 2026-05-28 | 2026-06-01 |
| CVE-2026-44848 | Portainer Community Edition is a lightweight service delivery platform for containerized applications that can be used to manage Docker, Swarm, Kubernetes and ACI environments. From 2.33.0 to before 2.33.8, 2.39.2, and 2.41.0, The Docker plugin management endpoints (/plugins/*) were not registered with a handler, so standard users with endpoint access could call privileged plugin operations — including installing and enabling plugins — directly against the underlying Docker daemon. The vulnerabi | [email protected] | 9.4 | 0.05% | 2026-05-28 | 2026-06-01 |
| CVE-2024-33662 | Portainer before 2.20.2 improperly uses an encryption algorithm in the AesEncrypt function. | [email protected] | 7.5 | 0.05% | 2024-10-02 | 2025-05-21 |
| CVE-2024-33661 | Portainer before 2.20.0 allows redirects when the target is not index.yaml. | [email protected] | 9.1 | 0.10% | 2024-04-26 | 2025-05-21 |
| CVE-2024-29296 | A user enumeration vulnerability was found in Portainer CE 2.19.4. This issue occurs during user authentication process, where a difference in response time could allow a remote unauthenticated user to determine if a username is valid or not. | [email protected] | 5.3 | 12.94% | 2024-04-10 | 2025-06-05 |
| CVE-2022-24961 | In Portainer Agent before 2.11.1, an API server can continue running even if not associated with a Portainer instance in the past few days. | [email protected] | 9.8 | 0.75% | 2022-02-11 | 2024-11-21 |
| CVE-2021-42650 | Cross Site Scripting (XSS vulnerability exists in Portainer before 2.9.1 via the node input box in Custom Templates. | [email protected] | 6.1 | 0.23% | 2021-10-18 | 2024-11-21 |
| CVE-2020-24264 | Portainer 1.24.1 and earlier is affected by incorrect access control that may lead to remote arbitrary code execution. The restriction checks for bind mounts are applied only on the client-side and not the server-side, which can lead to spawning a container with bind mount. Once such a container is spawned, it can be leveraged to break out of the container leading to complete Docker host machine takeover. | [email protected] | 9.8 | 5.24% | 2021-03-16 | 2024-11-21 |
| CVE-2020-24263 | Portainer 1.24.1 and earlier is affected by an insecure permissions vulnerability that may lead to remote arbitrary code execution. A non-admin user is allowed to spawn new containers with critical capabilities such as SYS_MODULE, which can be used to take over the Docker host. | [email protected] | 8.8 | 1.92% | 2021-03-16 | 2024-11-21 |
| CVE-2019-16878 | Portainer before 1.22.1 has XSS (issue 2 of 2). | [email protected] | 5.4 | 0.35% | 2019-11-07 | 2024-11-21 |
| CVE-2019-16877 | Portainer before 1.22.1 has Incorrect Access Control (issue 4 of 4). | [email protected] | 8.8 | 0.64% | 2019-11-07 | 2024-11-21 |
| CVE-2019-16876 | Portainer before 1.22.1 allows Directory Traversal. | [email protected] | 7.5 | 0.70% | 2019-11-07 | 2024-11-21 |
| CVE-2019-16872 | Portainer before 1.22.1 has Incorrect Access Control (issue 1 of 4). | [email protected] | 9.9 | 0.52% | 2019-11-07 | 2024-11-21 |
| CVE-2019-16874 | Portainer before 1.22.1 has Incorrect Access Control (issue 2 of 4). | [email protected] | 6.5 | 0.36% | 2019-11-07 | 2024-11-21 |