Lucene search
+L

320 matches found

CBLMariner
CBLMariner
added 2025/03/13 3:10 p.m.9 views

CVE-2025-27144 affecting package influxdb for versions less than 2.7.5-2

CVE-2025-27144 affecting package influxdb for versions less than 2.7.5-2. A patched version of the package is available...

8.7CVSS7.8AI score0.00369EPSS
Exploits0
CBLMariner
CBLMariner
added 2025/03/13 3:10 p.m.10 views

CVE-2025-22868 affecting package influxdb for versions less than 2.7.5-2

CVE-2025-22868 affecting package influxdb for versions less than 2.7.5-2. A patched version of the package is available...

7.5CVSS7.6AI score0.00804EPSS
Exploits0
OSV
OSV
added 2025/03/12 7:15 p.m.5 views

AZL-58386 CVE-2025-22870 affecting package influxdb for versions less than 2.6.1-22

Matching of hosts against proxy patterns can improperly treat an IPv6 zone ID as a hostname component. For example, when the NOPROXY environment variable is set to ".example.com", a request to "::1%25.example.com:80 will incorrectly match and not be proxied...

4.4CVSS6.6AI score0.00393EPSS
Exploits2References1
OSV
OSV
added 2025/03/12 7:15 p.m.5 views

AZL-58419 CVE-2025-22870 affecting package influxdb for versions less than 2.7.5-4

Matching of hosts against proxy patterns can improperly treat an IPv6 zone ID as a hostname component. For example, when the NOPROXY environment variable is set to ".example.com", a request to "::1%25.example.com:80 will incorrectly match and not be proxied...

4.4CVSS6.6AI score0.00393EPSS
Exploits2References1
CBLMariner
CBLMariner
added 2025/03/03 10:12 p.m.6 views

CVE-2025-27144 affecting package influxdb for versions less than 2.6.1-21

CVE-2025-27144 affecting package influxdb for versions less than 2.6.1-21. A patched version of the package is available...

8.7CVSS6.7AI score0.00369EPSS
Exploits0
CBLMariner
CBLMariner
added 2025/02/27 10:12 p.m.48 views

CVE-2023-44487 affecting package influxdb for versions less than 2.6.1-11

CVE-2023-44487 affecting package influxdb for versions less than 2.6.1-11. A patched version of the package is available...

7.5CVSS8.2AI score0.99999EPSS
Exploits20
OSV
OSV
added 2025/02/26 8:14 a.m.6 views

AZL-57338 CVE-2025-22868 affecting package influxdb for versions less than 2.7.5-2

An attacker can pass a malicious malformed token which causes unexpected memory to be consumed during parsing...

7.5CVSS6.6AI score0.00804EPSS
Exploits0References1
OSV
OSV
added 2025/02/24 11:15 p.m.8 views

AZL-57129 CVE-2025-27144 affecting package influxdb for versions less than 2.7.5-2

Go JOSE provides an implementation of the Javascript Object Signing and Encryption set of standards in Go, including support for JSON Web Encryption JWE, JSON Web Signature JWS, and JSON Web Token JWT standards. In versions on the 4.x branch prior to version 4.0.5, when parsing compact JWS or JWE...

8.7CVSS6.7AI score0.00369EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/02/10 12:0 a.m.14 views

Azure Linux 3.0 Security Update: cert-manager / influxdb / keda / libcontainers-common / packer (CVE-2024-6104)

The version of cert-manager / influxdb / keda / libcontainers-common / packer installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-6104 advisory. - go-retryablehttp prior to 0.7.7 did not sanitize urls...

6CVSS7.4AI score0.00358EPSS
Exploits0References2
CBLMariner
CBLMariner
added 2025/01/29 5:2 p.m.9 views

CVE-2024-28180 affecting package influxdb for versions less than 2.7.3-9

CVE-2024-28180 affecting package influxdb for versions less than 2.7.3-9. A patched version of the package is available...

4.3CVSS6.5AI score0.01956EPSS
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/01/24 9:8 a.m.5 views

Malicious code in ig-lighthouse-to-influxdb (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 92e8d076b669d18ea59535f03270a27adbfc6b0717789403453fabeb522b988b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSV
OSV
added 2025/01/24 9:8 a.m.2 views

MAL-2025-576 Malicious code in ig-lighthouse-to-influxdb (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 92e8d076b669d18ea59535f03270a27adbfc6b0717789403453fabeb522b988b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References1
CBLMariner
CBLMariner
added 2025/01/23 6:2 p.m.14 views

CVE-2024-28180 affecting package influxdb for versions less than 2.6.1-20

CVE-2024-28180 affecting package influxdb for versions less than 2.6.1-20. A patched version of the package is available...

4.3CVSS5AI score0.01956EPSS
Exploits0
CBLMariner
CBLMariner
added 2025/01/21 11:41 p.m.12 views

CVE-2024-45338 affecting package influxdb for versions less than 2.7.3-8

CVE-2024-45338 affecting package influxdb for versions less than 2.7.3-8. A patched version of the package is available...

5.3CVSS7.3AI score0.00874EPSS
Exploits0
CBLMariner
CBLMariner
added 2025/01/13 5:28 p.m.5 views

CVE-2024-45338 affecting package influxdb for versions less than 2.6.1-19

CVE-2024-45338 affecting package influxdb for versions less than 2.6.1-19. A patched version of the package is available...

5.3CVSS5.6AI score0.00874EPSS
Exploits0
CBLMariner
CBLMariner
added 2024/12/19 11:6 p.m.19 views

CVE-2024-24786 affecting package influxdb for versions less than 2.6.1-18

CVE-2024-24786 affecting package influxdb for versions less than 2.6.1-18. A patched version of the package is available...

7.5CVSS6.9AI score0.01262EPSS
Exploits0
OSV
OSV
added 2024/12/18 9:15 p.m.6 views

AZL-54437 CVE-2024-45338 affecting package influxdb for versions less than 2.7.3-9

An attacker can craft an input to the Parse functions that would be processed non-linearly with respect to its length, resulting in extremely slow parsing. This could cause a denial of service...

5.3CVSS6.6AI score0.00874EPSS
Exploits0References1
OSV
OSV
added 2024/12/18 9:15 p.m.9 views

AZL-54524 CVE-2024-45338 affecting package influxdb for versions less than 2.6.1-19

An attacker can craft an input to the Parse functions that would be processed non-linearly with respect to its length, resulting in extremely slow parsing. This could cause a denial of service...

5.3CVSS6.6AI score0.00874EPSS
Exploits0References1
CBLMariner
CBLMariner
added 2024/12/05 12:57 a.m.22 views

CVE-2024-24786 affecting package influxdb for versions less than 2.7.3-7

CVE-2024-24786 affecting package influxdb for versions less than 2.7.3-7. A patched version of the package is available...

7.5CVSS6.7AI score0.01262EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2024/11/28 4:3 a.m.3 views

SUSE CVE-2024-30896

InfluxDB OSS 2.x through 2.7.11 stores the administrative operator token under the default organization which allows authorized users with read access to the authorization resource of the default organization to retrieve the operator token. InfluxDB OSS 1.x, Enterprise, Cloud, Cloud Dedicated and...

9.1CVSS8.6AI score0.05208EPSS
Exploits3References3
Rows per page
Query Builder