thecodingmachine security advisories

2 threat alerts tracking vulnerabilities and security advisories that affect thecodingmachine products.

Vulnios monitors thecodingmachine CVE feeds, vendor advisories, CISA KEV listings, and exploit-prediction data continuously. Each alert below is enriched with severity, exploitation status, affected products, and a remediation path. Use this page to scan recent thecodingmachine security news in one place, or click into an individual alert for full detail.

Critical Vulnerability: CVE-2026-40281 — thecodingmachine — gotenberg
Gotenberg is a Docker-powered stateless API for PDF files. In versions 8.30.1 and earlier, the metadata write endpoint validates metadata keys for control characters but leaves metadata values unsanit
criticalCVE-2026-40281
Critical Vulnerability: CVE-2026-35458 — thecodingmachine — gotenberg
Gotenberg is an API for converting document formats. In 8.29.1 and earlier, Gotenberg uses dlclark/regexp2 to compile user-supplied scope patterns without setting a proper timeout. Users with access t
criticalCVE-2026-35458

Track thecodingmachine exposure across your environment

Vulnios automatically cross-references your asset inventory against new thecodingmachine CVEs and surfaces only what affects you. No more sifting manually — actionable findings only.

Start a free scan

thecodingmachine security advisories

Critical Vulnerability: CVE-2026-40281 — thecodingmachine — gotenberg

Critical Vulnerability: CVE-2026-35458 — thecodingmachine — gotenberg

Track thecodingmachine exposure across your environment