Unraid
by Unraid
CVEs (7)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2020-5847 | Cri | 0.86 | 9.8 | 0.96 | KEV | Mar 16, 2020 | Unraid through 6.8.0 allows Remote Code Execution. | |
| CVE-2020-5849 | Hig | 0.71 | 7.5 | 0.93 | KEV | Mar 16, 2020 | Unraid 6.8.0 allows authentication bypass. | |
| CVE-2025-29266 | Cri | 0.55 | 9.6 | 0.00 | Mar 31, 2025 | Unraid 7.0.0 before 7.0.1 allows remote users to access the Unraid WebGUI and web console as root without authentication if a container is running in Host networking mode with Use Tailscale enabled. | ||
| CVE-2026-9773 | 0.00 | — | 0.01 | Jun 24, 2026 | Unraid Web Server ToggleState Command Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Unraid. Authentication is required to exploit this vulnerability. The specific flaw exists… | |||
| CVE-2026-9772 | 0.00 | — | 0.01 | Jun 24, 2026 | Unraid Web Server FileUpload Command Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Unraid. Authentication is required to exploit this vulnerability. The specific flaw exists… | |||
| CVE-2026-3839 | 0.00 | — | 0.01 | Mar 13, 2026 | Unraid Authentication Request Path Traversal Authentication Bypass Vulnerability. This vulnerability allows remote attackers to bypass authentication on affected installations of Unraid. Authentication is not required to exploit this vulnerability. The specific flaw exists… | |||
| CVE-2026-3838 | 0.00 | — | 0.01 | Mar 13, 2026 | Unraid Update Request Path Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Unraid. Authentication is required to exploit this vulnerability. The specific flaw exists within the… |
- risk 0.86cvss 9.8epss 0.96
Unraid through 6.8.0 allows Remote Code Execution.
- risk 0.71cvss 7.5epss 0.93
Unraid 6.8.0 allows authentication bypass.
- risk 0.55cvss 9.6epss 0.00
Unraid 7.0.0 before 7.0.1 allows remote users to access the Unraid WebGUI and web console as root without authentication if a container is running in Host networking mode with Use Tailscale enabled.
- CVE-2026-9773Jun 24, 2026risk 0.00cvss —epss 0.01
Unraid Web Server ToggleState Command Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Unraid. Authentication is required to exploit this vulnerability. The specific flaw exists…
- CVE-2026-9772Jun 24, 2026risk 0.00cvss —epss 0.01
Unraid Web Server FileUpload Command Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Unraid. Authentication is required to exploit this vulnerability. The specific flaw exists…
- CVE-2026-3839Mar 13, 2026risk 0.00cvss —epss 0.01
Unraid Authentication Request Path Traversal Authentication Bypass Vulnerability. This vulnerability allows remote attackers to bypass authentication on affected installations of Unraid. Authentication is not required to exploit this vulnerability. The specific flaw exists…
- CVE-2026-3838Mar 13, 2026risk 0.00cvss —epss 0.01
Unraid Update Request Path Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Unraid. Authentication is required to exploit this vulnerability. The specific flaw exists within the…