Adguardteam Adguardhome vulnerabilities
2 known vulnerabilities affecting adguardteam/adguardhome.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL2
Vulnerabilities
Page 1 of 1
CVE-2026-32136P2CRITICALCVSS 9.8fixed in 0.107.732026-03-11
CVE-2026-32136 [CRITICAL] CWE-287 CVE-2026-32136: AdGuard Home is a network-wide software for blocking ads and tracking. Prior to 0.107.73, an unauthe
AdGuard Home is a network-wide software for blocking ads and tracking. Prior to 0.107.73, an unauthenticated remote attacker can bypass all authentication in AdGuardHome by sending an HTTP/1.1 request that requests an upgrade to HTTP/2 cleartext (h2c). Once the upgrade is accepted, the resulting HTTP/2 connection is handled by the inner mux, which
nvd
CVE-2026-41448P2CRITICALCVSS 9.4fixed in 0.107.772026-06-08
CVE-2026-41448 [CRITICAL] CWE-22 CVE-2026-41448: AdGuard Home, when started with the --glinet flag, contains an authentication bypass vulnerability t
AdGuard Home, when started with the --glinet flag, contains an authentication bypass vulnerability that allows unauthenticated attackers to gain full admin access by supplying a path traversal sequence in the Admin-Token cookie, exploiting unsanitized string concatenation in the token file path construction within the authglinet middleware. Attacke
nvd