Vulnerability in Portainer Community Edition
CVE-2026-33590
Insecure default settings of Portainer CE grant regular (non-admin) users privileges that allow host filesystem access and host-level code execution. An authenticated non-administrative user with endpoint access can exploit these settings…
EPSS: 0.001 (17.8th percentile) — read the EPSS interpretation.
Affected products
- Portainer Community Edition — versions 0
Weakness classification (CWE)
References
- a6d3dc9e-0591-4a13-bce7-0f5b31ff6158 (third-party-advisory)
- a6d3dc9e-0591-4a13-bce7-0f5b31ff6158 (issue-tracking)
- a6d3dc9e-0591-4a13-bce7-0f5b31ff6158 (issue-tracking)