CVE-2025-69201

Publication date

2025-12-29 15:51:41

Family

GitHub_M

State

PUBLISHED

Description

Tugtainer is a self-hosted app for automating updates of docker containers. In versions prior to 1.15.1, arbitary arguments can be injected in tugtainer-agent `POST api/command/run`. Version 1.15.1 fixes the issue.