15 matches found
EUVD-2024-46730
Malicious code in bioql PyPI...
CVE-2025-4565 vulnerabilities
Vulnerabilities for packages: kserve, datadog-agent, grafana-oncall...
GHSA-8QVM-5X2C-J2W7 vulnerabilities
Vulnerabilities for packages: kserve, datadog-agent, grafana-oncall...
GHSA-8QVM-5X2C-J2W7 vulnerabilities
Vulnerabilities for packages: ghidra, request-1276, kserve, spamcheck, nemo, grafana-oncall, awx, datadog-agent, datadog-agent-fips, text-generation-inference...
CVE-2025-4565 vulnerabilities
Vulnerabilities for packages: ghidra, request-1276, kserve, spamcheck, nemo, grafana-oncall, awx, datadog-agent, datadog-agent-fips, text-generation-inference...
CVE-2025-32873 vulnerabilities
Vulnerabilities for packages: grafana-oncall...
GHSA-8J24-CJRQ-GR2M vulnerabilities
Vulnerabilities for packages: grafana-oncall...
CVE-2024-5526
Grafana OnCall is an easy-to-use on-call management tool that will help reduce toil in on-call management through simpler workflows and interfaces that are tailored specifically for engineers. Grafana OnCall, from version 1.1.37 before 1.5.2 are vulnerable to a Server Side Request Forgery SSRF...
The vulnerability of the webhook component of the Grafana OnCall notification system allows a hacker to perform an SSRF attack.
The vulnerability of the webhook component in the Grafana OnCall notification system is related to insufficient validation of incoming requests. Exploiting this vulnerability could allow a malicious actor to execute an SSRF attack remotely...
CVE-2024-5526
Grafana OnCall is an easy-to-use on-call management tool that will help reduce toil in on-call management through simpler workflows and interfaces that are tailored specifically for engineers. Grafana OnCall, from version 1.1.37 before 1.5.2 are vulnerable to a Server Side Request Forgery SSRF...
CVE-2024-5526
Grafana OnCall is an easy-to-use on-call management tool that will help reduce toil in on-call management through simpler workflows and interfaces that are tailored specifically for engineers. Grafana OnCall, from version 1.1.37 before 1.5.2 are vulnerable to a Server Side Request Forgery SSRF...
CVE-2024-5526
Grafana OnCall is an easy-to-use on-call management tool that will help reduce toil in on-call management through simpler workflows and interfaces that are tailored specifically for engineers. Grafana OnCall, from version 1.1.37 before 1.5.2 are vulnerable to a Server Side Request Forgery SSRF...
CVE-2024-5526
Grafana OnCall CVE-2024-5526 affects versions 1.1.37–1.5.1, with a Server Side Request Forgery (SSRF) vulnerability in the webhook functionality. The issue is resolved in version 1.5.2. Affected component: Grafana OnCall webhook handler. Impact described as SSRF; no explicit exploitation details ...
Grafana OnCall Webhook SSRF
Grafana OnCall is an easy-to-use on-call management tool that will help reduce toil in on-call management through simpler workflows and interfaces that are tailored specifically for engineers. Grafana OnCall, from version 1.1.37 before 1.5.2 are vulnerable to a Server Side Request Forgery SSRF...
PT-2024-4050 · Grafana · Grafana Oncall
Name of the Vulnerable Software and Affected Versions: Grafana OnCall versions 1.1.37 through 1.5.1 Description: The issue is related to insufficient validation of incoming requests in the webhook functionality of Grafana OnCall, which can allow a remote attacker to perform a Server Side Request...