Seven Critical Vulnerabilities Discovered in Portainer

Portainer is a lightweight management UI which allows you to easily manage your Docker host or Swarm cluster.

In October 2019, I discovered 7 critical vulnerabilities in Portainer which allows attacker to steal session tokens, escalate privilege and access to host filesystem.

At the time of writing, all of the issues identified in this blog have been fixed and published by Portainer.

Full blog post is published at Fortinet’s threat research blog

Leave a Reply

Your email address will not be published. Required fields are marked *