ByteOS Network

Unraid

Source -

CNACISA

BOS Name -

N/A

CNA CVEs -

ADP CVEs -

CISA CVEs -

NVD CVEs -

3Vulnerabilities found

CVE-2025-29266

Assigner-MITRE Corporation

View Details

Assigner-MITRE Corporation

CVSS Score-9.6||CRITICAL

EPSS-0.19% / 40.98%

7 Day CHG~0.00%

Published-31 Mar, 2025 | 00:00

Updated-01 Apr, 2025 | 20:26

Unraid 7.0.0 before 7.0.1 allows remote users to access the Unraid WebGUI and web console as root without authentication if a container is running in Host networking mode with Use Tailscale enabled.

Vendor-Unraid

Product-Unraid

CWE ID-CWE-289

Authentication Bypass by Alternate Name

CVE-2020-5849

Assigner-MITRE Corporation

View Details

Assigner-MITRE Corporation

CVSS Score-7.5||HIGH

EPSS-93.71% / 99.84%

7 Day CHG~0.00%

Published-16 Mar, 2020 | 17:24

Updated-30 Jul, 2025 | 01:45

Known KEV||Action Due Date - 2022-05-03||Apply updates per vendor instructions.

Unraid 6.8.0 allows authentication bypass.

Vendor-unraid n/a Unraid

Product-unraid n/a Unraid

CWE ID-CWE-697

Incorrect Comparison

CWE ID-CWE-287

Improper Authentication

CVE-2020-5847

Assigner-MITRE Corporation

View Details

Assigner-MITRE Corporation

CVSS Score-9.8||CRITICAL

EPSS-93.51% / 99.82%

7 Day CHG~0.00%

Published-16 Mar, 2020 | 17:23

Updated-30 Jul, 2025 | 01:45

Known KEV||Action Due Date - 2022-05-03||Apply updates per vendor instructions.

Unraid through 6.8.0 allows Remote Code Execution.

Vendor-unraid n/a Unraid

Product-unraid n/a Unraid