Lucene search
+L

233 matches found

euvd
euvd
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-21759

Malicious code in bioql PyPI...

4.3CVSS6.3AI score0.0089EPSS
Exploits0References10
euvd
euvd
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-0215

Malicious code in bioql PyPI...

4.3CVSS5.9AI score0.00368EPSS
Exploits0References6
euvd
euvd
added 2025/10/03 8:7 p.m.8 views

EUVD-2022-28647

Malicious code in bioql PyPI...

4.3CVSS4.7AI score0.00544EPSS
Exploits0References2
euvd
euvd
added 2025/10/03 8:7 p.m.7 views

EUVD-2024-36555

Malicious code in bioql PyPI...

4.3CVSS4.7AI score0.00372EPSS
Exploits0References1
githubexploit
githubexploit
added 2025/09/15 3:56 p.m.204 views

nettoolbox

NetToolbox - Network Security Toolkit A comprehensive, modern...

7.2AI score
Exploits0
nessus
nessus
added 2025/09/02 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2022-31097

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Grafana is an open-source platform for monitoring and observability. Versions on the 8.x and 9.x branch prior to 9.0.3, 8.5.9, 8.4.10, and 8.3.10 are vulnerable...

8.7CVSS7.6AI score0.68603EPSS
Exploits0References2
nessus
nessus
added 2025/09/02 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2024-11741

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Grafana is an open-source platform for monitoring and observability. The Grafana Alerting VictorOps integration was not properly protected and could be exposed ...

4.3CVSS5.9AI score0.00368EPSS
Exploits0References3
vulncheck_kev
vulncheck_kev
added 2025/08/07 12:0 a.m.28 views

VulnCheck KEV: CVE-2025-3415

Grafana is an open-source platform for monitoring and observability. The Grafana Alerting DingDing integration was not properly protected and could be exposed to users with Viewer permission. Fixed in versions 10.4.19+security-01, 11.2.10+security-01, 11.3.7+security-01, 11.4.5+security-01,...

4.3CVSS5.8AI score0.0089EPSS
In wildExploits0References41
alpinelinux
alpinelinux
added 2025/07/17 11:15 a.m.10 views

CVE-2025-3415

Grafana is an open-source platform for monitoring and observability. The Grafana Alerting DingDing integration was not properly protected and could be exposed to users with Viewer permission. Fixed in versions 10.4.19+security-01, 11.2.10+security-01, 11.3.7+security-01, 11.4.5+security-01,...

4.3CVSS7.2AI score0.0089EPSS
Exploits0References1
grafana
grafana
added 2025/07/17 12:0 a.m.10 views

Grafana Alerting DingDing Integration URL Exposed to Viewers

Grafana is an open-source platform for monitoring and observability. The Grafana Alerting DingDing integration was not properly protected and could be exposed to users with Viewer permission. Fixed in versions 10.4.19+security-01, 11.2.10+security-01, 11.3.7+security-01, 11.4.5+security-01,...

4.3CVSS6.3AI score0.0089EPSS
Exploits0
susecve
susecve
added 2025/06/24 11:25 p.m.3 views

SUSE CVE-2025-3415

Grafana is an open-source platform for monitoring and observability. The Grafana Alerting DingDing integration was not properly protected and could be exposed to users with Viewer permission. Fixed in versions 10.4.19+security-01, 11.2.10+security-01, 11.3.7+security-01, 11.4.5+security-01,...

4.3CVSS6.9AI score0.0089EPSS
Exploits0References12
redhatcve
redhatcve
added 2025/06/24 11:45 a.m.7 views

CVE-2025-3415

A flaw exists in Grafana Alerting, where the DingDing contact-point integration URL can be revealed in plain text to users with viewer-level permissions due to misconfigured access control. This disclosure permits unauthorized users to view sensitive webhook URLs, including API tokens or keys,...

4.3CVSS6.6AI score0.0089EPSS
Exploits0References3
nessus
nessus
added 2025/06/19 12:0 a.m.8 views

FreeBSD : Grafana -- DingDing contact points exposed in Grafana Alerting (6548cb01-4c33-11f0-8a97-6c3be5272acd)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 6548cb01-4c33-11f0-8a97-6c3be5272acd advisory. Grafana Labs reports: An incident occurred where the DingDing alerting integration URL was inadvertentl...

4.3CVSS5.6AI score0.0089EPSS
Exploits0References3
ptsecurity
ptsecurity
added 2025/06/14 12:0 a.m.7 views

PT-2025-25459

Name of the Vulnerable Software and Affected Versions Grafana affected versions not specified Description A medium-severity flaw in Grafana Alerting exposes sensitive DingDing contact point URLs to viewers. This issue may lead to data exposure. Recommendations Update to a patched version to resol...

8.6CVSS6.9AI score0.03711EPSS
Exploits1References219
freebsd
freebsd
added 2025/04/05 12:0 a.m.7 views

Grafana -- DingDing contact points exposed in Grafana Alerting

Grafana Labs reports: An incident occurred where the DingDing alerting integration URL was inadvertently exposed to viewers due to a setting oversight, which we learned about through a bug bounty report. The CVSS 3.0 score for this vulnerability is 4.3 Medium...

4.3CVSS7.1AI score0.0089EPSS
Exploits0References1
nessus
nessus
added 2025/03/11 12:0 a.m.12 views

Kibana 8.15.x < 8.15.1 Multiples Vulnerabilities

According to its self-reported version number, the Kibana application running on the remote host is 8.15.x prior to 8.15.1. It is, therefore, affected by Multiples Vulnerabilities. - A deserialization issue in Kibana can lead to arbitrary code execution when Kibana attempts to parse a YAML docume...

7.5CVSS8.1AI score0.00936EPSS
Exploits1References5
bdu_fstec
bdu_fstec
added 2025/03/10 12:0 a.m.9 views

The vulnerability of the software platform for integrating Grafana Alerting VictorOps, related to information disclosure, allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the Grafana Alerting VictorOps software platform relates to the disclosure of information. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain unauthorized access to protected information...

4.3CVSS6.3AI score0.00368EPSS
Exploits0References5Affected Software4
osv
osv
added 2025/02/28 3:32 p.m.5 views

OESA-2025-1188 grafana security update

Grafana is an open source, feature rich metrics dashboard and graph editor for Graphite, InfluxDB OpenTSDB. Security Fixes: Grafana is an open-source platform for monitoring and observability. Versions on the 8.x and 9.x branch prior to 9.0.3, 8.5.9, 8.4.10, and 8.3.10 are vulnerable to stored...

8.7CVSS6.7AI score0.68603EPSS
Exploits0References10
suse
suse
added 2025/02/21 11:0 a.m.2 views

Security update for grafana

This update for grafana fixes the following issues: grafana was updated from version 10.4.13 to 10.4.15: Security issues fixed: CVE-2024-45339: Fixed vulnerability when creating log files bsc1236559 CVE-2024-11741: Fixed the Grafana Alerting VictorOps integration bsc1236734 CVE-2025-21613: Remove...

8.1CVSS6.7AI score0.01956EPSS
Exploits0References16
osv
osv
added 2025/02/21 11:0 a.m.8 views

SUSE-SU-2025:0623-1 Security update for grafana

This update for grafana fixes the following issues: grafana was updated from version 10.4.13 to 10.4.15: - Security issues fixed: CVE-2024-45339: Fixed vulnerability when creating log files bsc1236559 CVE-2024-11741: Fixed the Grafana Alerting VictorOps integration bsc1236734 CVE-2025-21613:...

9.8CVSS6.6AI score0.01956EPSS
Exploits0References9
Rows per page
Query Builder