Signalk Signalk-server

14 CVEs affecting Signalk Signalk-server. Latest disclosed: 2026-05-09. Critical: 4, High: 3.

Top CVEs affecting Signalk Signalk-server
CVESeverityScorePublishedSummary
CVE-2026-23515Critical10.02026-02-02Signal K Server is a server application that runs on a central hub in a boat. Prior to 1.5.0, a command injection vulnerability allows authenticated users with…
CVE-2025-66398Critical9.72026-01-01Signal K Server is a server application that runs on a central hub in a boat. Prior to version 2.19.0, an unauthenticated attacker can pollute the internal sta…
CVE-2026-33950Critical9.42026-04-02Signal K Server is a server application that runs on a central hub in a boat. Prior to version 2.24.0-beta.4, there is a privilege escalation vulnerability by…
CVE-2025-68620Critical9.12026-01-01Signal K Server is a server application that runs on a central hub in a boat. Versions prior to 2.19.0 expose two features that can be chained together to stea…
CVE-2026-41893High7.52026-05-09Signal K Server is a server application that runs on a central hub in a boat. Prior to version 2.25.0, the HTTP login endpoints (POST /login and POST /signalk/…
CVE-2026-39320High7.52026-04-21Signal K Server is a server application that runs on a central hub in a boat. Versions prior to 2.25.0 are vulnerable to an unauthenticated Regular Expression…
CVE-2025-68272High7.52026-01-01Signal K Server is a server application that runs on a central hub in a boat. A Denial of Service (DoS) vulnerability in versions prior to 2.19.0 allows an una…
CVE-2026-35038Medium6.52026-04-02Signal K Server is a server application that runs on a central hub in a boat. Prior to version 2.24.0, there is an arbitrary prototype read vulnerability via `…
CVE-2025-69203Medium6.32026-01-01Signal K Server is a server application that runs on a central hub in a boat. Versions prior to 2.19.0 of the access request system have two related features t…
CVE-2026-34083Medium6.12026-04-02Signal K Server is a server application that runs on a central hub in a boat. Prior to version 2.24.0, SignalK Server contains a code-level vulnerability in it…
CVE-2025-68273Medium5.32026-01-01Signal K Server is a server application that runs on a central hub in a boat. An unauthenticated information disclosure vulnerability in versions prior to 2.19…
CVE-2026-25228Medium5.02026-02-02Signal K Server is a server application that runs on a central hub in a boat. Prior to 2.20.3, a path traversal vulnerability in SignalK Server's applicationDa…
CVE-2026-339512026-04-02Signal K Server is a server application that runs on a central hub in a boat. Prior to version 2.24.0-beta.1, the SignalK Server exposes an unauthenticated HTT…
CVE-2025-686192026-01-01Signal K Server is a server application that runs on a central hub in a boat. Versions prior to 2.19.0 of the appstore interface allow administrators to instal…