Package impact

Go / github.com/gravitl/netmaker

CVE	Severity	CVSS	Risk	Published	Description
CVE-2022-0664	critical	9.8	9.8	4y ago	Use of Hard-coded Cryptographic Key in Netmaker in github.com/gravitl/netmaker
CVE-2023-32079	high	8.8	8.8	3y ago	Netmaker Vulnerable to Privilege Escalation From Non Admin To Admin User in github.com/gravitl/netmaker
CVE-2022-36110	high	8.8	8.8	4y ago	Netmaker vulnerable to Insufficient Granularity of Access Control in github.com/gravitl/netmaker
CVE-2022-23650	high	8.8	8.8	4y ago	Use of Hard-coded Cryptographic Key in Netmaker
CVE-2026-38651	high	8.2	8.2	29d ago	Netmaker does not verify JWT signatures for host tokens
CVE-2023-32078	high	7.5	7.5	3y ago	Netmaker IDOR Allows User to Update Other User's Password in github.com/gravitl/netmaker
CVE-2023-32077	high	7.5	7.5	3y ago	Netmaker has Hardcoded DNS Secret Key
CVE-2026-29771	medium	6.5	6.5	3mo ago	Netmaker Vulnerable to Denial of Service via Server Shutdown Endpoint in github.com/gravitl/netmaker
CVE-2026-29196	unknown	—	—	3mo ago	Netmaker: Service User with Network Access Can Access config files with WireGuard Private Keys in github.com/gravitl/netmaker
CVE-2026-29195	unknown	—	—	3mo ago	Netmaker has Privilege Escalation from Admin to Super-Admin via User Update in github.com/gravitl/netmaker
CVE-2026-29194	unknown	—	—	3mo ago	Netmaker has Insufficient Authorization in Host Token Verification in github.com/gravitl/netmaker