vantage6 vulnerabilities

Browse known CVEs and advisories by package and ecosystem. Severity tells you the worst case. What determines real risk is whether the vulnerable code actually runs in your applications.

Get a demo

Browse by ecosystem

npmPyPIMavenGoRubyGemsCargoNuGetComposerpubSwiftGitHub Actions
CVE-IDSeverityPackage summary
CVE-2026-54533Mediumvantage6: vantage6 node has an Improper Access Control issueCVE-2026-54445Mediumvantage6: Vantage6: Set admin user and password from environment or configurationCVE-2024-27928Mediumvantage6: Vantage6: 2FA can be circumvented with hacked email accessCVE-2024-24769Lowvantage6: Vantage6: No limit on emails sent for password/MFA resetCVE-2025-43863Lowvantage6: vantage6 lacks brute-force protection on change password functionalityCVE-2024-32969Lowvantage6: vantage6 collaboration admins can extend their influence by expanding the collaborationCVE-2024-24770Mediumvantage6: vantage6 vulnerable to a username timing attack on recover password/MFA tokenCVE-2024-23823Mediumvantage6: vantage6's CORS settings overly permissiveCVE-2024-22193Lowvantage6: vantage6 may create unencrypted tasks in encrypted collaborationCVE-2024-21653Mediumvantage6: vantage6 has insecure SSH configuration for node and server containersCVE-2024-21649Highvantage6: vantage6 remote code execution vulnerabilityCVE-2023-41881Lowvantage6: vantage6 does not properly delete linked resources when deleting a collaborationCVE-2023-28635Mediumvantage6: Defining resource name as integer may give unintended access in vantage6CVE-2023-41882Mediumvantage6: Improper Access Control in vantage6CVE-2023-23930Highvantage6: Pickle serialization vulnerable to Deserialization of Untrusted DataCVE-2023-23929Highvantage6: vantage6 refresh tokens do not expireCVE-2023-22738Highvantage6: vantage6 vulnerable to Improper Preservation of PermissionsCVE-2022-39228Mediumvantage6: vantage6 vulnerable to Observable Response Discrepancy

Stop the waste.
Protect your environment with Kodem.