Latest version: v4.1.1
| CVE/PVE | Vulnerability ID | Advisory | Affected versions | Severity | Severity Score |
|---|---|---|---|---|---|
| CVE-2023-48054 | 65234 |
Missing SSL certificate validation in localstack v2.3.2 allows attack… |
|
HIGH | 7.4 |
| PVE-2022-52464 | 52464 |
Localstack 0.12.17 replaces Docker CLI commands with Docker Python SD… |
|
- | - |
| PVE-2021-42833 | 42833 |
Localstack 0.12.17 replaces Docker CLI commands with Docker Python SD… |
|
- | - |
| PVE-2021-42834 | 42834 |
Localstack 0.12.15 binds Edge Service to 127.0.0.1 by default instead… |
|
- | - |
| PVE-2021-41059 | 41059 |
Localstack 0.12.14 fixes CORS setup to prevent CSRF. https://github.… |
|
HIDDEN | X.Y |
| PVE-2022-52465 | 52465 |
Localstack 0.12.14 fixes CORS setup to prevent CSRF attacks. https:/… |
|
- | - |
| CVE-2021-32090 | 42835 |
Localstack is vulnerable to CVE-2021-32090: The dashboard component o… |
|
CRITICAL | 9.8 |
| PVE-2021-42837 | 42837 |
Localstack is vulnerable to Denial of Service via regular expressions… |
|
- | - |
| CVE-2021-32091 | 42836 |
Localstack is vulnerable to CVE-2021-32091: A Cross-site scripting (X… |
|
MEDIUM | 6.1 |