CVE-2026-24124

< 2.4.1

Dragonfly is an open source P2P-based file distribution and image acceleration system. In versions 2.4.1-rc.0 and below, the Job A

9.8CRITICAL

CVE-2025-59410

< 2.1.0

Dragonfly is an open source P2P-based file distribution and image acceleration system. Prior to 2.1.0, the code in the scheduler f

3.7LOW

CVE-2025-59354

< 2.1.0

Dragonfly is an open source P2P-based file distribution and image acceleration system. Prior to 2.1.0, the DragonFly2 uses a varie

5.3MEDIUM

CVE-2025-59353

< 2.1.0

Dragonfly is an open source P2P-based file distribution and image acceleration system. Prior to 2.1.0, a peer can obtain a valid T

7.5HIGH

CVE-2025-59352

< 2.1.0

Dragonfly is an open source P2P-based file distribution and image acceleration system. Prior to 2.1.0, the gRPC API and HTTP APIs

9.8CRITICAL

CVE-2025-59351

< 2.1.0

Dragonfly is an open source P2P-based file distribution and image acceleration system. Prior to 2.1.0, the first return value of a

5.3MEDIUM

CVE-2025-59350

< 2.1.0

Dragonfly is an open source P2P-based file distribution and image acceleration system. Prior to 2.1.0, the access control mechanis

5.3MEDIUM

CVE-2025-59349

< 2.1.0

Dragonfly is an open source P2P-based file distribution and image acceleration system. Prior to 2.1.0, DragonFly2 uses the os.Mkdi

3.3LOW

CVE-2025-59348

< 2.1.0

Dragonfly is an open source P2P-based file distribution and image acceleration system. Prior to 2.1.0, the processPieceFromSource

7.5HIGH

CVE-2025-59347

< 2.1.0

Dragonfly is an open source P2P-based file distribution and image acceleration system. Prior to 2.1.0, The Manager disables TLS ce

6.5MEDIUM

CVE-2025-59346

< 2.1.0

Dragonfly is an open source P2P-based file distribution and image acceleration system. Versions prior to 2.1.0 contain a server-si

5.3MEDIUM

CVE-2025-59345

< 2.1.10

Dragonfly is an open source P2P-based file distribution and image acceleration system. Prior to 2.1.0, The /api/v1/jobs and /prehe

9.1CRITICAL

CVE-2025-26269

< 1.29.0

DragonflyDB Dragonfly through 1.28.2 (fixed in 1.29.0) allows authenticated users to cause a denial of service (daemon crash) via

3.3LOW

CVE-2025-26268

< 1.27.0

DragonflyDB Dragonfly before 1.27.0 allows authenticated users to cause a denial of service (daemon crash) via a crafted Redis com

3.3LOW

CVE-2023-27584

< 2.0.9

Dragonfly is an open source P2P-based file distribution and image acceleration system. It is hosted by the Cloud Native Computing

9.8CRITICAL

CVE-2022-41967

all versions

Dragonfly is a Java runtime dependency management library. Dragonfly v0.3.0-SNAPSHOT does not configure DocumentBuilderFactory to

7.0HIGH

CVE-2021-33473

all versions

An argument injection vulnerability in Dragonfly Ruby Gem v1.3.0 allows attackers to read and write arbitrary files when the verif

9.1CRITICAL

CVE-2021-33564

< 1.4.0

An argument injection vulnerability in the Dragonfly gem before 1.4.0 for Ruby allows remote attackers to read and write to arbitr

9.8CRITICAL

CVE-2005-4351

<= 1.2

The securelevels implementation in FreeBSD 7.0 and earlier, OpenBSD up to 3.8, DragonFly up to 1.2, and Linux up to 2.6.15 allows