SecAlerts
CVE ListPricingSign Up
onedev logo

onedev

Security Risk Profile

44
/100
medium

Security Risk Score

Comprehensive risk assessment based on 3 vulnerabilities, EPSS scores, exploitation status, and remediation availability.

📅 Data spans from May 14, 2026 to present

3
Total CVEs
2
Critical+High
0
Exploited
2
Unpatched

Threat Assessment

Avg CVSS
6.9
Base severity
Avg EPSS
0%
Exploit probability
Unpatched
2
Critical/High
Risk Level
44/100
medium
🆕 1Fresh (<7d)📈 2 in Last 30 Days

Severity Distribution

Critical
0
High
2
Medium
1
Low
0

Exploit Likelihood

>50% chance
0
20-50%
0
5-20%
0
<5%
0

Age Distribution

Common Weaknesses (CWE)

1
Path Traversal
1

Most Affected Products

1. OneDev OneDev3

Recent Vulnerabilities

See more →
CVE-2026-49248
CVSS 8.3high

OneDev: RCE through absolute-path symlink following allows low-privileged users to overwrite arbitrary server via TarUtils.untar

6/18/2026🔧 No Patch
CVE-2026-11441
CVSS 5.3medium

theonedev Pull Request issues canAccessIssue improper authorization

6/6/2026🔧 No Patch
CVE-2026-44647
CVSS 7.1high

OneDev: Path Traversal (read capability via Git LFS pointer resolution)

5/14/2026🔧 No Patch

Monitor onedev in Real-Time

Get instant alerts when new vulnerabilities are discovered. Stay ahead of security threats with SecAlerts.

Start Free TrialBook a Demo
Powered bySecAlerts

Monitor Your Software Stack in Real-Time

Get instant alerts when vulnerabilities are discovered in your software stack. Stay ahead of security threats with SecAlerts.

Start Free TrialBook a Demo
AboutNewsDocumentationTermsContact

© 2026 SecAlerts Pty Ltd. All rights reserved.