cockpit-doc (AlmaLinux:8) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the AlmaLinux:8 package cockpit-doc, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (4)
CVE-2026-4802 — CVSS 8.0 (high): A flaw was found in Cockpit. This vulnerability allows a remote attacker to achieve arbitrary command execution on the host by exploiting…
CVE-2021-3698 — CVSS 7.5 (high): A flaw was found in Cockpit in versions prior to 260 in the way it handles the certificate verification performed by the System Security…
CVE-2024-2947 — CVSS 7.3 (high): A flaw was found in Cockpit. Deleting a sosreport with a crafted name via the Cockpit web interface can lead to a command injection…
CVE-2021-3660 — CVSS 4.3 (medium): Cockpit (and its plugins) do not seem to protect itself against clickjacking. It is possible to render a page from a cockpit server via…