{"id":"CVE-2024-33662","details":"Portainer before 2.20.2 improperly uses an encryption algorithm in the AesEncrypt function.","aliases":["GHSA-9mjw-79r6-c9m8","GO-2024-3172"],"modified":"2026-05-01T04:25:10.108715Z","published":"2024-10-02T00:00:00Z","related":["SUSE-SU-2024:3911-1","openSUSE-SU-2024:0350-1","openSUSE-SU-2024:14447-1"],"database_specific":{"osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/33xxx/CVE-2024-33662.json","cna_assigner":"mitre"},"references":[{"type":"WEB","url":"https://github.com/portainer/portainer/compare/2.20.1...2.20.2"},{"type":"WEB","url":"https://www.portainer.io"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/33xxx/CVE-2024-33662.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2024-33662"},{"type":"REPORT","url":"https://github.com/portainer/portainer/issues/11737"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/portainer/portainer","events":[{"introduced":"0"},{"fixed":"eb5b9ef069404b278aaa895d8392058d2e3b020c"}],"database_specific":{"versions":[{"introduced":"0"},{"fixed":"2.20.2"}]}}],"versions":["1.11.3","1.20.0","2.0.0","2.20.0","2.20.1","internal-1.2.0","internal-1.3.0","internal-1.4.0","internal-1.5.0","internal-1.6.0","v0.5","v0.6.0"],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-33662.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H"}]}