ProxmoxSecurityAdvisory's latest activity
-
ProxmoxSecurityAdvisory replied to the thread Proxmox Datacenter Manager - Security Advisories.Subject: PSA-2026-00010-1: "Crackarmor" apparmor vulnerabilities Advisory date: 2026-03-13 Packages: proxmox-kernel-* Details: Qualys discovered several vulnerabilities in the AppArmor LSM (Linux Security Module) code of the Linux kernel... -
ProxmoxSecurityAdvisory replied to the thread Proxmox Mail Gateway - Security Advisories.Subject: PSA-2026-00010-1: "Crackarmor" apparmor vulnerabilities Advisory date: 2026-03-13 Packages: proxmox-kernel-* Details: Qualys discovered several vulnerabilities in the AppArmor LSM (Linux Security Module) code of the Linux kernel...
-
ProxmoxSecurityAdvisory replied to the thread Proxmox Backup Server - Security Advisories.Subject: PSA-2026-00010-1: "Crackarmor" apparmor vulnerabilities Advisory date: 2026-03-13 Packages: proxmox-kernel-* Details: Qualys discovered several vulnerabilities in the AppArmor LSM (Linux Security Module) code of the Linux kernel...
-
ProxmoxSecurityAdvisory replied to the thread Proxmox Virtual Environment - Security Advisories.Subject: PSA-2026-00010-1: "Crackarmor" apparmor vulnerabilities Advisory date: 2026-03-13 Packages: proxmox-kernel-* Details: Qualys discovered several vulnerabilities in the AppArmor LSM (Linux Security Module) code of the Linux kernel...
-
ProxmoxSecurityAdvisory replied to the thread Proxmox Backup Server - Security Advisories.Subject: PSA-2026-00009-1: Log poisoning via crafted HTTP Forwarded header Advisory date: 2026-03-03 Packages: proxmox-backup-server Details: Clients could inject arbitrary IP addresses into Proxmox Backup Server authentication logs by adding...
-
ProxmoxSecurityAdvisory replied to the thread Proxmox Backup Server - Security Advisories.Subject: PSA-2026-00008-1: User Enumeration Vulnerability in Proxmox Backup Server API Token Authentication Advisory date: 2026-03-03 Packages: proxmox-backup-server Details: Different user-facing error messages were returned in case of an...
-
ProxmoxSecurityAdvisory replied to the thread Proxmox Virtual Environment - Security Advisories.Subject: PSA-2026-00007-1: Stored XSS in network interfaces comment Advisory date: 2026-03-03 Packages: proxmox-widget-toolkit Details: The network interface configuration view in the web interface was susceptible to XSS. Editing these...
-
ProxmoxSecurityAdvisory replied to the thread Proxmox Virtual Environment - Security Advisories.Subject: PSA-2026-00006-1: User Enumeration Vulnerability in Proxmox VE API Token Authentication Advisory date: 2026-03-03 Packages: pve-manager Details: Different user-facing error messages were returned in case of an API token...
-
ProxmoxSecurityAdvisory replied to the thread Proxmox Mail Gateway - Security Advisories.Subject: PSA-2026-00005-1: Bypass of mail filters through confusion of the MIME Parser Advisory date: 2026-02-17 Packages: pmg-api, libmime-tools-perl Details: The parser initially processing e-mails for further analysis was set to not cause...
-
ProxmoxSecurityAdvisory replied to the thread Proxmox Datacenter Manager - Security Advisories.Subject: PSA-2026-00004-1: Authenticated Remote Code Execution via shell injection Advisory date: 2026-01-13 Packages: proxmox-datacenter-manager Details: Missing separation between options and package name arguments in an apt-get invocation...
-
ProxmoxSecurityAdvisory replied to the thread Proxmox Backup Server - Security Advisories.Subject: PSA-2026-00003-1: Authenticated Remote Code Execution via shell injection Advisory date: 2026-01-13 Packages: proxmox-backup-server Details: Missing separation between options and package name arguments in an apt-get invocation...
-
ProxmoxSecurityAdvisory replied to the thread Proxmox Virtual Environment - Security Advisories.Subject: PSA-2026-00002-1: Authenticated Remote Code Execution via shell injection Advisory date: 2026-01-13 Packages: pve-manager Details: Missing separation between options and package name arguments in an apt-get invocation exposed over the...
-
ProxmoxSecurityAdvisory replied to the thread Proxmox Mail Gateway - Security Advisories.Subject: PSA-2026-00001-1: Authenticated Remote Code Execution via shell injection Advisory date: 2026-01-13 Packages: pmg-api Details: Missing separation between options and package name arguments in an apt-get invocation exposed over the API...
-
ProxmoxSecurityAdvisory posted the thread Proxmox Datacenter Manager - Security Advisories in Security Advisories.This is the list of security advisories since 2025-12-01 for the Proxmox Datacenter Manager. For details about scope, coverage and timeline see the General FAQ about Proxmox Security Announcements.