VYPR
Vendor

Acmesh Official

Products
1
CVEs
2
Across products
2
Status
Private

Products

1

Recent CVEs

2
  • CVE-2023-38198CriJul 13, 2023
    risk 0.64cvss 9.8epss 0.01

    acme.sh before 3.0.6 runs arbitrary commands from a remote server via eval, as exploited in the wild in June 2023.

  • CVE-2025-32111HigApr 4, 2025
    risk 0.50cvss 8.7epss 0.00

    The Docker image from acme.sh before 40b6db6 is based on a .github/workflows/dockerhub.yml file that lacks "persist-credentials: false" for actions/checkout.