CVE-2018-12678 Blast Radius

CRITICAL • CVSS 9.8Portainer before 1.18.0 supports unauthenticated requests to the websocket endpoint with an unvalidated id query parameter for the /websocket/exec end

Is Your Infrastructure Using These Packages?

EchelonGraph automatically scans your cloud infrastructure and SBOMs to map your exposure to vulnerabilities like CVE-2018-12678.

Start Free Scan →← Back to CVE-2018-12678