pkg:Go/github.com/gravitl/netmaker

21 total CVEsHIGH15

✅ Check your installed version

All known vulnerabilities

  • HIGH8.8CVE-2023-32079Netmaker Vulnerable to Privilege Escalation From Non Admin To Admin User in github.com/gravitl/netmaker
    from 0, < 0.17.1
  • HIGH8.8CVE-2023-32079Netmaker Vulnerable to Privilege Escalation From Non Admin To Admin User in github.com/gravitl/netmaker
    from 0, < 0.17.1, >= 0.18.0, < 0.18.6
  • HIGH8.8CVE-2022-36110Netmaker vulnerable to Insufficient Granularity of Access Control in github.com/gravitl/netmaker
    from 0, < 0.15.1
  • HIGH8.8CVE-2022-36110Netmaker vulnerable to Insufficient Granularity of Access Control in github.com/gravitl/netmaker
    from 0, < 0.15.1
  • HIGH8.8CVE-2022-0664Use of Hard-coded Cryptographic Key in Netmaker in github.com/gravitl/netmaker
    from 0, < 0.8.5, >= 0.9.0, < 0.9.4
  • HIGH8.8CVE-2022-0664Use of Hard-coded Cryptographic Key in Netmaker in github.com/gravitl/netmaker
    from 0, < 0.8.5
  • HIGH8.2CVE-2026-38651Netmaker does not verify JWT signatures for host tokens
    from 0, < 1.5.0
  • HIGH8.1CVE-2026-29194Netmaker has Insufficient Authorization in Host Token Verification
    from 0, < 1.5.0
  • HIGH8.1CVE-2026-29194Netmaker has Insufficient Authorization in Host Token Verification
    from 0, < 1.5.0
  • HIGH7.5CVE-2023-32078Netmaker IDOR Allows User to Update Other User's Password in github.com/gravitl/netmaker
    from 0, < 0.17.1
  • HIGH7.5CVE-2023-32078Netmaker IDOR Allows User to Update Other User's Password in github.com/gravitl/netmaker
    from 0, < 0.17.1, >= 0.18.0, < 0.18.6
  • HIGH7.5CVE-2023-32077Netmaker has Hardcoded DNS Secret Key
    from 0, < 0.17.1
  • HIGH7.5CVE-2023-32077Netmaker has Hardcoded DNS Secret Key
    from 0, < 0.17.1, >= 0.18.0, < 0.18.6
  • HIGH7.2CVE-2022-23650Use of Hard-coded Cryptographic Key in Netmaker
    from 0, < 0.8.5, >= 0.9.0, < 0.9.4
  • HIGH7.2CVE-2022-23650Use of Hard-coded Cryptographic Key in Netmaker
    from 0, < 0.8.5
  • CVE-2026-29196Netmaker: Service User with Network Access Can Access config files with WireGuard Private Keys
    from 0, < 1.5.0
  • CVE-2026-29196Netmaker: Service User with Network Access Can Access config files with WireGuard Private Keys
    from 0, < 1.5.0
  • CVE-2026-29195Netmaker has Privilege Escalation from Admin to Super-Admin via User Update
    from 0, < 1.5.0
  • CVE-2026-29195Netmaker has Privilege Escalation from Admin to Super-Admin via User Update
    from 0, < 1.5.0
  • CVE-2026-29771Netmaker Vulnerable to Denial of Service via Server Shutdown Endpoint
    from 0, < 1.2.0
  • CVE-2026-29771Netmaker Vulnerable to Denial of Service via Server Shutdown Endpoint
    from 0, < 1.2.0