Security Reports

This page lists all security vulnerabilities fixed in released versions of Apache Guacamole. Each vulnerability is listed with a description of the problem, its associated CVE number, and the Guacamole release in which the vulnerability was fixed.

Reporting new vulnerabilities

If you believe you have discovered a security problem in Apache Guacamole, please follow responsible disclosure practices and report discovered security issues privately, either to the private security mailing list of the ASF Security Team or the private@guacamole.apache.org mailing list, before disclosing or discussing the issue in a public forum.

Fixed in Apache Guacamole 0.9.11-incubating

Fixed in Guacamole 0.9.9 (pre-Apache release)

Fixed in Guacamole 0.6.3 (pre-Apache release)