52 matches found
SUSE CVE-2018-1002104
Versions 1.5 of the Kubernetes ingress default backend, which handles invalid ingress traffic, exposed prometheus metrics publicly...
GHSA-P3X5-5XPX-9PHM Kubernetes ingress exposes sensitive information
Versions 1.5 of the Kubernetes ingress default backend, which handles invalid ingress traffic, exposed prometheus metrics publicly...
Security update for docker-distribution (moderate)
openSUSE Security Update: Security update for docker-distribution Announcement ID: openSUSE-SU-2020:1433-1 Rating: moderate References: 1033172 1049850 Cross-References: CVE-2017-11468 Affected Products: openSUSE Backports SLE-15-SP2 An update that solves one vulnerability and has one errata is n...
CVE-2018-1002104
Versions 1.5 of the Kubernetes ingress default backend, which handles invalid ingress traffic, exposed prometheus metrics publicly...
CVE-2018-1002104
Versions 1.5 of the Kubernetes ingress default backend, which handles invalid ingress traffic, exposed prometheus metrics publicly...
CVE-2018-1002104
Versions 1.5 of the Kubernetes ingress default backend, which handles invalid ingress traffic, exposed prometheus metrics publicly...
Default credentials
Versions 1.5 of the Kubernetes ingress default backend, which handles invalid ingress traffic, exposed prometheus metrics publicly...
CVE-2018-1002104
Versions 1.5 of the Kubernetes ingress default backend, which handles invalid ingress traffic, exposed prometheus metrics publicly...
CVE-2018-14602
An issue was discovered in GitLab Community and Enterprise Edition before 10.8.7, 11.0.x before 11.0.5, and 11.1.x before 11.1.2. Information Disclosure can occur because the Prometheus metrics feature discloses private project pathnames...
Information disclosure
An issue was discovered in GitLab Community and Enterprise Edition before 10.8.7, 11.0.x before 11.0.5, and 11.1.x before 11.1.2. Information Disclosure can occur because the Prometheus metrics feature discloses private project pathnames...
CVE-2018-14602
Removed by vendor...
CVE-2018-14602
GitLab CE/EE prior to 10.8.7, 11.0.x prior to 11.0.5, and 11.1.x prior to 11.1.2 expose private project pathnames via the Prometheus metrics endpoint, causing information disclosure. Root cause: the metrics feature reveals sensitive path information. Impact: partial confidentiality loss for priva...