Linuxfoundation Dragonfly — known CVE vulnerabilities
Every CVE whose affected-product data names Linuxfoundation Dragonfly, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (13)
CVE-2023-27584 — CVSS 9.8 (critical): Dragonfly is an open source P2P-based file distribution and image acceleration system. It is hosted by the Cloud Native Computing…
CVE-2025-59352 — CVSS 9.8 (critical): Dragonfly is an open source P2P-based file distribution and image acceleration system. Prior to 2.1.0, the gRPC API and HTTP APIs allow…
CVE-2026-24124 — CVSS 9.8 (critical): Dragonfly is an open source P2P-based file distribution and image acceleration system. In versions 2.4.1-rc.0 and below, the Job API…
CVE-2025-59345 — CVSS 9.1 (critical): Dragonfly is an open source P2P-based file distribution and image acceleration system. Prior to 2.1.0, The /api/v1/jobs and /preheats…
CVE-2025-59353 — CVSS 7.5 (high): Dragonfly is an open source P2P-based file distribution and image acceleration system. Prior to 2.1.0, a peer can obtain a valid TLS…
CVE-2025-59348 — CVSS 7.5 (high): Dragonfly is an open source P2P-based file distribution and image acceleration system. Prior to 2.1.0, the processPieceFromSource method…
CVE-2025-59347 — CVSS 6.5 (medium): Dragonfly is an open source P2P-based file distribution and image acceleration system. Prior to 2.1.0, The Manager disables TLS certificate…
CVE-2025-59346 — CVSS 5.3 (medium): Dragonfly is an open source P2P-based file distribution and image acceleration system. Versions prior to 2.1.0 contain a server-side…
CVE-2025-59350 — CVSS 5.3 (medium): Dragonfly is an open source P2P-based file distribution and image acceleration system. Prior to 2.1.0, the access control mechanism for the…
CVE-2025-59351 — CVSS 5.3 (medium): Dragonfly is an open source P2P-based file distribution and image acceleration system. Prior to 2.1.0, the first return value of a function…
CVE-2025-59354 — CVSS 5.3 (medium): Dragonfly is an open source P2P-based file distribution and image acceleration system. Prior to 2.1.0, the DragonFly2 uses a variety of…
CVE-2025-59410 — CVSS 3.7 (low): Dragonfly is an open source P2P-based file distribution and image acceleration system. Prior to 2.1.0, the code in the scheduler for…
CVE-2025-59349 — CVSS 3.3 (low): Dragonfly is an open source P2P-based file distribution and image acceleration system. Prior to 2.1.0, DragonFly2 uses the os.MkdirAll…