FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2025-02-20 09:44:03 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
41711c0d-db27-11ef-873e-8447094a420fVaultwarden -- Multiple vulnerabilities

The Vaultwarden project reports:

RCE in the admin panel.

Getting access to the Admin Panel via CSRF.

Escalation of privilege via variable confusion in OrgHeaders trait.


Discovery 2025-01-25
Entry 2025-01-25
vaultwarden
< 1.33.0

CVE-2025-24364
https://github.com/dani-garcia/vaultwarden/security/advisories/GHSA-j4h8-vch3-f797
CVE-2025-24365
https://github.com/dani-garcia/vaultwarden/security/advisories/GHSA-h6cc-rc6q-23j4
0a8dbc7f-bedc-11ef-b5a1-000ec6d40964Vaultwarden -- Admin organization permissions

The Vaultwarden project reports:

Admins from any organization were able to modify or delete groups in any other organization if they know the group's uuid.


Discovery 2024-12-20
Entry 2024-12-20
vaultwarden
< 1.32.7

https://github.com/dani-garcia/vaultwarden/pull/5291