You can report vulnerabilities privately to security@tailscale.com. Tailscale staff will triage the issue, and work with you on a coordinated disclosure timeline.
Security: tailscale/tailscale
Security
SECURITY.md
-
Non-interactive Tailscale SSH sessions on FreeBSD may use the effective group ID of the tailscaled processGHSA-vfgq-g5x8-g595 published
Mar 22, 2023 by mayakaczModerate -
Tailscale daemon is vulnerable to information disclosure via CSRFGHSA-qccm-wmcq-pwr6 published
Nov 21, 2022 by mayakaczLow -
Tailscale Windows daemon is vulnerable to RCE via CSRFGHSA-vqp6-rc3h-83cp published
Nov 21, 2022 by mayakaczCritical
Learn more about advisories related to tailscale/tailscale in the GitHub Advisory Database