Recent content by ProxmoxSecurityAdvisory

Subject: PSA-2026-00004-1: Authenticated Remote Code Execution via shell injection Advisory date: 2026-01-13 Packages: proxmox-datacenter-manager Details: Missing separation between options and package name arguments in an apt-get invocation exposed over the API allowed an authenticated...

Subject: PSA-2026-00003-1: Authenticated Remote Code Execution via shell injection Advisory date: 2026-01-13 Packages: proxmox-backup-server Details: Missing separation between options and package name arguments in an apt-get invocation exposed over the API allowed an authenticated attacker...

Subject: PSA-2026-00002-1: Authenticated Remote Code Execution via shell injection Advisory date: 2026-01-13 Packages: pve-manager Details: Missing separation between options and package name arguments in an apt-get invocation exposed over the API allowed an authenticated attacker with...

Subject: PSA-2026-00001-1: Authenticated Remote Code Execution via shell injection Advisory date: 2026-01-13 Packages: pmg-api Details: Missing separation between options and package name arguments in an apt-get invocation exposed over the API allowed an authenticated attacker with Sys.Audit...

This is the list of security advisories since 2025-12-01 for the Proxmox Datacenter Manager. For details about scope, coverage and timeline see the General FAQ about Proxmox Security Announcements.

Subject: PSA-2025-00021-1: Denial of Service via NULL pointer dereference in apparmor Advisory date: 2025-12-02 Packages: proxmox-kernel-6.17-* Details: Certain socket operations from within an unprivileged container can trigger a NULL pointer dereference in the kernel's apprmor code...

Subject: PSA-2025-00020-1: Missing protections against malicious backup clients with S3-backed datastores Advisory date: 2025-10-27 Packages: proxmox-backup-server Details: On datastores configured with an S3 backend, a malicious client could upload chunks with invalid metadata, including a...

Subject: PSA-2025-00019-1: Race condition during long-running garbage collection and pruning of recent snapshots may lead to back up corruption before Proxmox Backup Server 3.4 Advisory date: 2025-10-27 Packages: proxmox-backup-server Details: On certain setups running Proxmox Backup Server...

Subject: PSA-2025-00018-1: buffer overflow in vncterm/spiceterm handling of ANSI escape sequences Advisory date: 2025-09-22 Packages: vncterm, spiceterm Details: vncterm and spiceterm are utilies that are spawned when initiating a VNC or SPICE session, respectively, for accessing a node or...

Subject: PSA-2025-00017-1: pre-generated "snakeoil" certificate in container templates Advisory date: 2025-09-17 Packages: pve-container Details: Any Debian-based container template that includes the "ssl-cert" package contains a self-signed "snakeoil" certificate and its corresponding key...

Subject: PSA-2025-00016-1: Spectre branch target injection from VM guests ("VMScape") Advisory date: 2025-09-17 Packages: proxmox-kernel-6.8, proxmox-kernel-6.14 Details: Incomplete branch predictor isolation mechanisms allow exploitation of branch prediction across hypervisor/guest context...

Subject: PSA-2025-00016-1: Spectre branch target injection from VM guests ("VMScape") Advisory date: 2025-09-17 Packages: proxmox-kernel-6.8, proxmox-kernel-6.14 Details: Incomplete branch predictor isolation mechanisms allow exploitation of branch prediction across hypervisor/guest context...

Subject: PSA-2025-00016-1: Spectre branch target injection from VM guests ("VMScape") Advisory date: 2025-09-17 Packages: proxmox-kernel-6.8, proxmox-kernel-6.14 Details: Incomplete branch predictor isolation mechanisms allow exploitation of branch prediction across hypervisor/guest context...

Subject: PSA-2025-00015-1: stored XSS in config values Advisory date: 2025-09-04 Packages: pmg-gui Details: The HTTP proxy setting dialogue in the web interface was susceptible to XSS. Editing this setting is only available to users with admin level access. A related issue in the Proxmox VE...

Subject: PSA-2025-00014-1: stored XSS in config values Advisory date: 2025-08-14 Packages: proxmox-backup-server Details: The WebAuthN setting dialogue in the web interface was susceptible to XSS. Editing these settings requires root privileges. A related issue in the Proxmox VE code base...