Lucene search
K

147 matches found

OpenVAS
OpenVAS
added 2022/07/06 12:0 a.m.8 views

Fedora: Security Advisory for golang-github-prometheus-alertmanager (FEDORA-2022-fae3ecee19)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.3CVSS8.9AI score0.05994EPSS
Exploits4References2
Fedora
Fedora
added 2022/07/04 1:35 a.m.19 views

[SECURITY] Fedora 36 Update: golang-github-prometheus-alertmanager-0.23.0-9.fc36

The Alertmanager handles alerts sent by client applications such as the Prometheus server. It takes care of deduplicating, grouping, and routing them to the correct receiver integrations such as email, PagerDuty, or OpsGenie. It a lso takes care of silencing and inhibition of alerts...

9.3CVSS8.8AI score0.05994EPSS
Exploits4
OpenVAS
OpenVAS
added 2022/06/21 12:0 a.m.23 views

openSUSE: Security Advisory for golang-github-prometheus-alertmanager (SUSE-SU-2022:2139-1)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.5CVSS10AI score0.05994EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2022/06/21 12:0 a.m.35 views

SUSE: Security Advisory (SUSE-SU-2022:2134-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.3AI score0.99888EPSS
Exploits47References18
OpenVAS
OpenVAS
added 2022/05/08 12:0 a.m.10 views

Fedora: Security Advisory for golang-github-prometheus-alertmanager (FEDORA-2022-08ae2dd481)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.5CVSS10AI score0.03931EPSS
Exploits0References2
Fedora
Fedora
added 2022/05/07 5:6 a.m.23 views

[SECURITY] Fedora 36 Update: golang-github-prometheus-alertmanager-0.23.0-8.fc36

The Alertmanager handles alerts sent by client applications such as the Prometheus server. It takes care of deduplicating, grouping, and routing them to the correct receiver integrations such as email, PagerDuty, or OpsGenie. It a lso takes care of silencing and inhibition of alerts...

7.5CVSS10AI score0.03931EPSS
Exploits0
OSV
OSV
added 2022/05/04 1:32 p.m.6 views

SUSE-SU-2022:1531-1 Security Beta update for SUSE Manager Client Tools

This update fixes the following issues: golang-github-prometheus-alertmanager: - CVE-2022-21698: Update vendor tarball with prometheus/clientgolang 1.11.1 bsc1196338, jscSLE-24077 - Update to version 0.23.0: amtool: Detect version drift and warn users 2672 Add ability to skip TLS verification for...

8.8CVSS9.1AI score0.05994EPSS
Exploits0References14
OpenVAS
OpenVAS
added 2022/04/29 12:0 a.m.8 views

Fedora: Security Advisory for golang-github-prometheus-alertmanager (FEDORA-2022-3a63897745)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.5CVSS10AI score0.03931EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2022/04/29 12:0 a.m.8 views

Fedora: Security Advisory for golang-github-prometheus-alertmanager (FEDORA-2022-5cbd6de569)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.5CVSS10AI score0.03931EPSS
Exploits0References2
Fedora
Fedora
added 2022/04/28 5:55 a.m.21 views

[SECURITY] Fedora 34 Update: golang-github-prometheus-alertmanager-0.23.0-8.fc34

The Alertmanager handles alerts sent by client applications such as the Prometheus server. It takes care of deduplicating, grouping, and routing them to the correct receiver integrations such as email, PagerDuty, or OpsGenie. It a lso takes care of silencing and inhibition of alerts...

7.5CVSS10AI score0.03931EPSS
Exploits0
Fedora
Fedora
added 2022/04/28 5:53 a.m.21 views

[SECURITY] Fedora 35 Update: golang-github-prometheus-alertmanager-0.23.0-8.fc35

The Alertmanager handles alerts sent by client applications such as the Prometheus server. It takes care of deduplicating, grouping, and routing them to the correct receiver integrations such as email, PagerDuty, or OpsGenie. It a lso takes care of silencing and inhibition of alerts...

7.5CVSS10AI score0.03931EPSS
Exploits0
Github Security Blog
Github Security Blog
added 2021/06/23 5:20 p.m.60 views

Improper input validation in CNCF Cortex

The Alertmanager in CNCF Cortex before 1.8.1 has a local file disclosure vulnerability when -experimental.alertmanager.enable-api is used. The HTTP basic auth passwordfile can be used as an attack vector to send any file content via a webhook. The alertmanager templates can be used as an attack...

5.5CVSS0.9AI score0.0037EPSS
Exploits0References6Affected Software1
OSV
OSV
added 2021/06/23 5:20 p.m.18 views

GHSA-M45G-F45X-VV22 Improper input validation in CNCF Cortex

The Alertmanager in CNCF Cortex before 1.8.1 has a local file disclosure vulnerability when -experimental.alertmanager.enable-api is used. The HTTP basic auth passwordfile can be used as an attack vector to send any file content via a webhook. The alertmanager templates can be used as an attack...

5.5CVSS5.1AI score0.0037EPSS
Exploits0References5
Veracode
Veracode
added 2021/05/03 3:56 a.m.25 views

Information Disclosure

github.com/cortexproject/cortex is vulnerable to information disclosure. The Alertmanager can potentially allow for disclosure of confidential local file content via a malicious configuration...

5.5CVSS2.5AI score0.0037EPSS
Exploits0References5Affected Software1
RedhatCVE
RedhatCVE
added 2021/04/30 7:6 p.m.36 views

CVE-2021-31232

A flaw was found in Cortex that may allow a local attacker to obtain sensitive information. This is due to an issue in the Alertmanager when -experimental.alertmanager.enable-api is used. By using a webhook to send file content, an attacker can load any text file specified in the templates list,...

5.5CVSS2AI score0.0037EPSS
Exploits0References4
NVD
NVD
added 2021/04/30 1:15 p.m.15 views

CVE-2021-31232

The Alertmanager in CNCF Cortex before 1.8.1 has a local file disclosure vulnerability when -experimental.alertmanager.enable-api is used. The HTTP basic auth passwordfile can be used as an attack vector to send any file content via a webhook. The alertmanager templates can be used as an attack...

5.5CVSS0.0037EPSS
Exploits0References4
NVD
NVD
added 2021/04/30 1:15 p.m.16 views

CVE-2021-31231

The Alertmanager in Grafana Enterprise Metrics before 1.2.1 and Metrics Enterprise 1.2.1 has a local file disclosure vulnerability when experimental.alertmanager.enable-api is used. The HTTP basic auth passwordfile can be used as an attack vector to send any file content via a webhook. The...

5.5CVSS0.00277EPSS
Exploits0References5
OSV
OSV
added 2021/04/30 1:15 p.m.3 views

CVE-2021-31231

The Alertmanager in Grafana Enterprise Metrics before 1.2.1 and Metrics Enterprise 1.2.1 has a local file disclosure vulnerability when experimental.alertmanager.enable-api is used. The HTTP basic auth passwordfile can be used as an attack vector to send any file content via a webhook. The...

5.5CVSS6AI score0.00277EPSS
Exploits0References5
OSV
OSV
added 2021/04/30 1:15 p.m.20 views

CVE-2021-31232

The Alertmanager in CNCF Cortex before 1.8.1 has a local file disclosure vulnerability when -experimental.alertmanager.enable-api is used. The HTTP basic auth passwordfile can be used as an attack vector to send any file content via a webhook. The alertmanager templates can be used as an attack...

5.5CVSS6.4AI score
Exploits0References4
Prion
Prion
added 2021/04/30 1:15 p.m.17 views

Arbitrary file deletion

The Alertmanager in Grafana Enterprise Metrics before 1.2.1 and Metrics Enterprise 1.2.1 has a local file disclosure vulnerability when experimental.alertmanager.enable-api is used. The HTTP basic auth passwordfile can be used as an attack vector to send any file content via a webhook. The...

2.1CVSS5.3AI score0.00277EPSS
Exploits0References5Affected Software1
Rows per page
Query Builder