github.com/getarcaneapp/arcane/backend

Go2 known CVEs affecting this package

Aggregated from OSV, GitHub Security Advisories, NVD, and vendor advisories. Each CVE links to its full detail page with vendor advisories, patches, fixed versions, and remediation guidance.

CVEs affecting github.com/getarcaneapp/arcane/backendpage 1 of 1

CVE-2026-40242HIGHCVSS 7.2EG 7.2✓ Fixed in 1.17.3
2026-04-10
Arcane is an interface for managing Docker containers, images, networks, and volumes. Prior to 1.17.3, the /api/templates/fetch endpoint accepts a caller-supplied url parameter and performs a server-side HTTP GET request to that URL withou…
CVE-2026-42461HIGHCVSS 7.5EG 7.5✓ Fixed in 1.18.0
2026-05-09
Arcane is an interface for managing Docker containers, images, networks, and volumes. Prior to version 1.18.0, four GET endpoints under /api/templates* in Arcane's Huma backend are registered without any Security requirement, allowing any …

Check whether github.com/getarcaneapp/arcane/backend is used in your infrastructure

EchelonGraph scans your cloud and SBOMs to map every package to your actual deployments. See blast radius for github.com/getarcaneapp/arcane/backend CVEs against the assets you own.

Start Free Scan →