CVE-2026-44848 | portainer Community Edition up to 2.33.7/2.39.1/2.40.x /plugins/ authorization (GHSA-rrmm-9v76-h3p4)

A vulnerability, which was classified as critical, was found in portainer Community Edition up to 2.33.7/2.39.1/2.40.x. This affects an unknown part of the file /plugins/. Executing a manipulation can lead to missing authorization.

This vulnerability appears as CVE-2026-44848. The attack may be performed from remote. There is no available exploit.

You should upgrade the affected component.VulDB Recent EntriesRead More