Octoprint

Latest version: v1.10.3

Vulnerabilities (21)

CVE/PVE	Vulnerability ID	Advisory	Affected versions	Severity	Severity Score
CVE-2023-41047	64727	Octoprint 1.9.3 fixes the CVE-2023-41047. This vulnerability allowed …	<1.9.3	MEDIUM	6.5
CVE-2024-23637	67598	OctoPrint is a web interface for 3D printer.s OctoPrint versions up u…	<=1.9.3	MEDIUM	4.9
CVE-2024-28237	67597	OctoPrint provides a web interface for controlling consumer 3D printe…	<=1.9.3	-	-
PVE-2024-64841	64841	Octoprint 1.8.3 resolves a vulnerability where a malicious admin user…	<1.8.3	-	-
PVE-2024-64730	64730	Version 1.8.3 of OctoPrint addresses a security vulnerability that al…	<1.8.3	-	-
PVE-2023-99955	60899	Octoprint 1.8.2 includes a fix for a open-redirect vulnerability. The…	<1.8.2	-	-
PVE-2022-49380	49380	Octoprint 1.8.1 fixes an XSS issue in the user/group delete confirmat…	<1.8.1	-	-
CVE-2018-16710	67596	Affected versions of OctoPrint allows remote attackers to obtain sens…	<1.5.0rc1	CRITICAL	9.1
CVE-2024-23637	64726	OctoPrint 1.10.0rc1 addresses the CVE-2024-23637. This vulnerability …	<1.10.0rc1	MEDIUM	4.9
CVE-2022-2822	54464	OctoPrint 1.7.3 and prior does not have rate limiting on the login pa…	<1.10.0	HIGH	7.5
CVE-2024-32977	71959	OctoPrint affected versions contain a vulnerability that allows an un…	<=1.10.0	-	-
CVE-2022-2888	54548	If an attacker comes into the possession of a victim's OctoPrint sess…	>=0,<1.8.3	MEDIUM	4.4
CVE-2022-3068	54547	Improper Privilege Management in GitHub repository octoprint/octoprin…	>=0,<1.8.3	HIGH	8.8
CVE-2022-2930	54354	Versions of OctoPrint prior to 1.8.3 did not require the current user…	>=0,<1.8.3	HIGH	7.8
CVE-2022-3607	54570	OctoPrint prior to 1.8.3 is vulnerable to Special Element Injection.	>=0,<1.8.3	MEDIUM	6.0
CVE-2022-2872	54550	Unrestricted Upload of File with Dangerous Type in GitHub repository …	>=0,<1.8.3	MEDIUM	5.4
CVE-2022-1432	54450	Cross-site Scripting (XSS) - Generic in GitHub repository octoprint/o…	>=0,<1.8.0	MEDIUM	6.4
PVE-2024-99773	66066	OctoPrint before 1.8.0 is susceptible to Cross-site Scripting (XSS) d…	>=0,<1.8.0	-	-
CVE-2022-1430	54451	Cross-site Scripting (XSS) - DOM in GitHub repository octoprint/octop…	>=0,<1.8.0	HIGH	7.5
CVE-2021-32561	54268	OctoPrint before 1.6.0 allows XSS because API error messages include …	>=0,<1.6.0	MEDIUM	6.1
CVE-2021-32560	54267	The Logging subsystem in OctoPrint before 1.6.0 has incorrect access …	>=0,<1.6.0	MEDIUM	6.5