If you are running Vaultwarden, you need to update. There is a CVE

submitted 3 weeks ago by Otter@lemmy.ca edited 3 weeks ago

github.com/dani-garcia/vaultwarden/releases/tag…

This release has fixed some CVE Reports reported by a third party security auditor and we recommend everybody to update to the latest version as soon as possible. The contents of these reports will be disclosed publicly in the future.

cross-posted from: https://lemmy.eco.br/post/8758930

If you're using Vaultwarden, you should update because of security fixes.

282

Log in to comment

9 Comments

thanks

My Vaultwarden is behind a private VPN, but I'll still update today. Thanks.

Thanks for posting

3 weeks ago , edited 3 weeks ago

Just the reason why I stopped using Vaultwarden and returned to Bitwarden (EDIT: ditching self hosting the password manager).

I'm not specialized in this, can't update right away, might not know of all security vulnerabilities I have - better leave it for the professionals.

I think what you mean is abandoning self hosting right? Because self hosting Bitwarden would have similar issues if you don't take the initiative to update.

yes, you're right. my message was unclear, I see now.
While I do self host many other things,
I just didn't want to take the risk regarding my password manager.

3 weeks ago

Just updated, thanks!

3 weeks ago

Thanks for the tip

Thanks. I logged in immediately to update the image, but luckily it was already updated by watchtower yesterday.