Every CVE whose affected-product data names Gravitl Netmaker, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2026-29194 — CVSS 8.1 (high): Netmaker makes networks with WireGuard. Prior to version 1.5.0, the Authorize middleware in Netmaker incorrectly validates host JWT tokens…
CVE-2026-29195 — CVSS 6.5 (medium): Netmaker makes networks with WireGuard. Prior to version 1.5.0, the user update handler (PUT /api/users/{username}) lacks validation to…
CVE-2026-29196 — CVSS 4.3 (medium): Netmaker makes networks with WireGuard. Prior to version 1.5.0, a user assigned the platform-user role can retrieve WireGuard private keys…