VYPR

Go modules package

github.com/netbirdio/netbird

pkg:golang/github.com/netbirdio/netbird

Vulnerabilities (2)

  • CVE-2025-10678CriOct 20, 2025
    affected < 0.57.0fixed 0.57.0

    NetBird VPN when installed using vendor's provided script failed to remove or change default password of an admin account created by ZITADEL. This issue affects instances installed using vendor's provided script. This issue may affect instances created with Docker if the default

  • CVE-2024-41260HigAug 1, 2024
    affected >= 0.23.2, < 0.29.2fixed 0.29.2

    A static initialization vector (IV) in the encrypt function of netbird management's service from v0.23.2 to v0.29.1 allows attackers to obtain sensitive information (email addresses) when in possession of the audit events database.