CVE-2018-12678
CRITICALPortainer < 1.18.0 - Unauthenticated Server-Side Request Forgery via Websocket Endpoint
Title source: llmDescription
Portainer before 1.18.0 supports unauthenticated requests to the websocket endpoint with an unvalidated id query parameter for the /websocket/exec endpoint, which allows remote attackers to bypass intended access restrictions or conduct SSRF attacks.
References (2)
Core 2
Core References
Issue Tracking, Patch, Third Party Advisory x_refsource_confirm
https://github.com/portainer/portainer/pull/1979
Issue Tracking, Third Party Advisory x_refsource_confirm
https://github.com/portainer/portainer/releases/tag/1.18.0
Scores
CVSS v3
9.8
EPSS
0.0231
EPSS Percentile
81.2%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-918
Status
published
Products (1)
portainer/portainer
< 1.18.0
Published
Jun 22, 2018
Tracked Since
Feb 18, 2026