Lucene search
K

11 matches found

CBLMariner
CBLMariner
added 2022/06/26 3:29 a.m.29 views

CVE-2021-29622 affecting package prometheus for versions less than 2.36.0-2

CVE-2021-29622 affecting package prometheus for versions less than 2.36.0-2. An upgraded version of the package is available that resolves this issue...

6.5CVSS6.6AI score0.1956EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2021/08/18 12:0 a.m.53 views

openSUSE 15 Security Update : SUSE Manager Client Tools (openSUSE-SU-2021:1162-1)

The remote SUSE Linux SUSE15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2021:1162-1 advisory. - Grafana Enterprise 7.2.x and 7.3.x before 7.3.10 and 7.4.x before 7.4.5 allows a dashboard editor to bypass a permission check concerning...

7.5CVSS7.8AI score0.1956EPSS
Exploits0References17
Tenable Nessus
Tenable Nessus
added 2021/08/13 12:0 a.m.33 views

openSUSE 15 Security Update : SUSE Manager Client Tools (openSUSE-SU-2021:2675-1)

The remote SUSE Linux SUSE15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2021:2675-1 advisory. - Grafana Enterprise 7.2.x and 7.3.x before 7.3.10 and 7.4.x before 7.4.5 allows a dashboard editor to bypass a permission check concerning...

7.5CVSS7.8AI score0.1956EPSS
Exploits0References17
Tenable Nessus
Tenable Nessus
added 2021/08/13 12:0 a.m.19 views

openSUSE 15 Security Update : golang-github-prometheus-prometheus (openSUSE-SU-2021:2664-1)

The remote SUSE Linux SUSE15 host has a package installed that is affected by a vulnerability as referenced in the openSUSE-SU-2021:2664-1 advisory. - Prometheus is an open-source monitoring system and time series database. In 2.23.0, Prometheus changed its default UI to the New ui. To ensure a...

6.5CVSS6.7AI score0.1956EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2021/08/13 12:0 a.m.28 views

openSUSE: Security Advisory for golang-github-prometheus-prometheus (openSUSE-SU-2021:2664-1)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

6.5CVSS6.7AI score0.1956EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2021/08/13 12:0 a.m.25 views

openSUSE: Security Advisory for SUSE (openSUSE-SU-2021:2675-1)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.5CVSS6.8AI score0.1956EPSS
Exploits0References2
OPENSUSE Linux
OPENSUSE Linux
added 2021/08/12 12:0 a.m.227 views

Security update for golang-github-prometheus-prometheus (moderate)

openSUSE Security Update: Security update for golang-github-prometheus-prometheus Announcement ID: openSUSE-SU-2021:2664-1 Rating: moderate References: 1186242 SLE-18254 Cross-References: CVE-2021-29622 CVSS scores: CVE-2021-29622 NVD : 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Affected...

6.5CVSS7.2AI score0.1956EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2021/07/27 10:30 p.m.287 views

Moderate: Red Hat Security Advisory: OpenShift Container Platform 4.8.2 bug fix and security update

Red Hat OpenShift Container Platform release 4.8.2 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.8. Red Hat Product Security has rated this update as having a...

9.8CVSS6.8AI score0.95707EPSS
Exploits22References1722
ArchLinux
ArchLinux
added 2021/05/25 12:0 a.m.223 views

[ASA-202105-25] prometheus: open redirect

Arch Linux Security Advisory ASA-202105-25 ========================================== Severity: Medium Date : 2021-05-25 CVE-ID : CVE-2021-29622 Package : prometheus Type : open redirect Remote : Yes Link : https://security.archlinux.org/AVG-1971 Summary ======= The package prometheus before...

6.5CVSS0.6AI score0.1956EPSS
Exploits0References7
RedhatCVE
RedhatCVE
added 2021/05/20 2:56 p.m.73 views

CVE-2021-29622

An open redirect vulnerability was found in Prometheus. By specially crafted URL and a /new endpoint, an attacker can redirect user to any other URL...

6.5CVSS2.7AI score0.1956EPSS
Exploits0References3
Cvelist
Cvelist
added 2021/05/19 8:0 p.m.34 views

CVE-2021-29622 Arbitrary redirects under /new endpoint

Prometheus is an open-source monitoring system and time series database. In 2.23.0, Prometheus changed its default UI to the New ui. To ensure a seamless transition, the URL's prefixed by /new redirect to /. Due to a bug in the code, it is possible for an attacker to craft an URL that can redirec...

6.5CVSS6.5AI score0.1956EPSS
Exploits0References3
Rows per page
Query Builder