2 matches found
AZL-35426 CVE-2023-50658 affecting package telegraf for versions less than 1.29.4-1
The jose2go component before 1.6.0 for Go allows attackers to cause a denial of service CPU consumption via a large p2c aka PBES2 Count value...
AZL-35299 CVE-2023-3978 affecting package telegraf for versions less than 1.29.4-1
Text nodes not in the HTML namespace are incorrectly literally rendered, causing text which should be escaped to not be. This could lead to an XSS attack...