Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

smallstep — Vulnerabilities & Security Advisories 4

Browse all 4 CVE security advisories affecting smallstep. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Top products by smallstep:certificatesStep-CA
CVE IDTitleCVSSSeverityPublished
CVE-2026-40097 Step CA affected by an index out of bounds panic in TPM attestation EKU validation — certificatesCWE-129 3.7 Low2026-04-10
CVE-2026-30836 Step CA: Unauthenticated Certificate Issuance via SCEP UpdateReq (MessageType=18) — certificatesCWE-287 10.0 Critical2026-03-19
CVE-2025-44005 Smallstep step-ca 安全漏洞 — Step-CACWE-287 10.0 Critical2025-12-17
CVE-2025-66406 Improper Authorization Check for SSH Certificate Revocation — certificatesCWE-863 5.0 Medium2025-12-03

This page lists every published CVE security advisory associated with smallstep. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.