Dagu
This hub aggregates every CVE we track for Dagu, a product in the oss libraries space. Use it to gauge the current risk picture and drill into individual advisories.
4
CVEs tracked
1
Critical
2
High
0
In CISA KEV
Severity distribution
HIGH2MEDIUM1CRITICAL1
Monthly trend
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
1
3
0
0
0
2024-072026-06
Latest CVEs
The 4 most recently published vulnerabilities affecting Dagu.
- CVE-2026-33344Dagu has an incomplete fix for CVE-2026-27598: path traversal via %2F-encoded slashes in locateDAG8.1
- CVE-2026-31886Dagu has a Path Traversal via `dagRunId` in Inline DAG Execution9.1
- CVE-2026-31882Dagu SSE Authentication Bypass in Basic Auth Mode7.5
- CVE-2026-27598Dagu: Path traversal in DAG creation allows arbitrary YAML file write outside DAGs directory6.5
Product normalization is registry-driven with AI assist and human review. How it works