Tgstation Tgstation-server
5 CVEs affecting Tgstation Tgstation-server. Latest disclosed: 2025-01-06. Critical: 0, High: 3.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2025-21611 | High | 8.8 | 2025-01-06 | tgstation-server is a production scale tool for BYOND server management. Prior to 6.12.3, roles used to authorize API methods were incorrectly OR'd instead of… |
CVE-2024-41799 | High | 8.4 | 2024-07-29 | tgstation-server is a production scale tool for BYOND server management. Prior to 6.8.0, low permission users using the "Set .dme Path" privilege could potenti… |
CVE-2023-32687 | High | 7.7 | 2023-05-29 | tgstation-server is a toolset to manage production BYOND servers. Starting in version 4.7.0 and prior to 5.12.1, instance users with the list chat bots permiss… |
CVE-2023-33198 | Medium | 6.1 | 2023-05-30 | tgstation-server is a production scale tool for BYOND server management. The DreamMaker API (DMAPI) chat channel cache can possibly be poisoned by a tgstation-… |
CVE-2023-34243 | Medium | 5.8 | 2023-06-08 | TGstation is a toolset to manage production BYOND servers. In affected versions if a Windows user was registered in tgstation-server (TGS), an attacker could d… |