Lucene search
+L

394 matches found

cve
cve
added 2026/06/05 2:49 p.m.81 views

CVE-2026-9270

DataDog::DogStatsd for Perl (up to version 0.07) is vulnerable to metric injections due to insufficient input sanitization in the send_stats pathway. The stat name is not stripped of newlines, enabling prefix manipulation; the value (delta) is not validated, allowing injection via set/gauge/count...

9.1CVSS5.5AI score0.00331EPSS
Exploits0References3Affected Software1
ptsecurity
ptsecurity
added 2026/06/05 12:0 a.m.16 views

PT-2026-46969

Name of the Vulnerable Software and Affected Versions DataDog::DogStatsd versions prior to 0.08 Description DataDog::DogStatsd does not properly sanitize input, which allows metric injections from untrusted sources. The format event method, utilized by the event method, fails to validate tag...

9.8CVSS5.4AI score0.00447EPSS
Exploits0References7
cnnvd
cnnvd
added 2026/06/05 12:0 a.m.12 views

DataDog::DogStatsd 安全漏洞

DataDog::DogStatsd is a Perl monitoring client library developed by DataDog Corporation that supports the DogStatsD protocol. Versions of DataDog::DogStatsd prior to 0.07 contained security vulnerabilities. These vulnerabilities stemmed from improper handling of inputs, the sendstats method not...

9.1CVSS5.3AI score0.00331EPSS
Exploits0References4
cnnvd
cnnvd
added 2026/06/05 12:0 a.m.10 views

DataDog::DogStatsd 安全漏洞

DataDog::DogStatsD is a Perl monitoring client library developed by DataDog Corporation that supports the DogStatsD protocol. Versions of DataDog::DogStatsD prior to 0.07 contained security vulnerabilities; these vulnerabilities stemmed from improper handling of inputs, allowing for the injection...

9.8CVSS5.4AI score0.00447EPSS
Exploits0References4
ossf
ossf
added 2026/05/26 3:9 p.m.28 views

Malicious code in cdktn-provider-datadog (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 29ce930466b101c48ae641d7e4ad57f3d5169b9f14b1e041e4264e75cbfd965b Package name cdktn-provider-datadog is a single-character variant f→n of HashiCorp's widely-used cdktf-provider-datadog CDKTF provider. README and...

5.9AI score
Exploits0References1
osv
osv
added 2026/05/26 3:9 p.m.9 views

MAL-2026-4824 Malicious code in cdktn-provider-datadog (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 29ce930466b101c48ae641d7e4ad57f3d5169b9f14b1e041e4264e75cbfd965b Package name cdktn-provider-datadog is a single-character variant f→n of HashiCorp's widely-used cdktf-provider-datadog CDKTF provider. README and...

5.9AI score
Exploits0References1
cgr
cgr
added 2026/05/12 1:17 p.m.13 views

GHSA-QCCP-GFCP-XXVC vulnerabilities

Vulnerabilities for packages: litellm, py3.9-pip, neuvector-manager, tensorflow-cpu-jupyter, gitlab-cng, py3-hashin, py3-cassandra-medusa, text-generation-inference, synapse, az, wazuh-manager, authentik-fips, spamcheck, datadog-agent, awx, azureml-inference-server-http-fips, jwt-tool,...

6.1AI score
Exploits0
cgr
cgr
added 2026/05/12 1:17 p.m.22 views

CVE-2026-44432 vulnerabilities

Vulnerabilities for packages: litellm, tensorflow-cpu-jupyter, neuvector-manager, gitlab-cng, py3-hashin, py3-cassandra-medusa, text-generation-inference, synapse, az, wazuh-manager, authentik-fips, spamcheck, datadog-agent, awx, azureml-inference-server-http-fips, jwt-tool,...

8.9CVSS6.3AI score0.0068EPSS
Exploits0
cgr
cgr
added 2026/05/12 1:17 p.m.11 views

GHSA-MF9V-MFXR-J63J vulnerabilities

Vulnerabilities for packages: litellm, tensorflow-cpu-jupyter, neuvector-manager, gitlab-cng, py3-hashin, py3-cassandra-medusa, text-generation-inference, synapse, az, wazuh-manager, authentik-fips, spamcheck, datadog-agent, awx, azureml-inference-server-http-fips, jwt-tool,...

6.1AI score
Exploits0
cgr
cgr
added 2026/05/12 1:17 p.m.29 views

CVE-2026-44431 vulnerabilities

Vulnerabilities for packages: litellm, py3.9-pip, neuvector-manager, tensorflow-cpu-jupyter, gitlab-cng, py3-hashin, py3-cassandra-medusa, text-generation-inference, synapse, az, wazuh-manager, authentik-fips, spamcheck, datadog-agent, awx, azureml-inference-server-http-fips, jwt-tool,...

8.2CVSS6.3AI score0.00527EPSS
Exploits0
wolfi
wolfi
added 2026/05/10 2:21 a.m.30 views

GHSA-R374-RXX8-8654 vulnerabilities

Vulnerabilities for packages: airflow, py3-paramiko, datadog-agent, superset...

6.1AI score
Exploits0
wolfi
wolfi
added 2026/05/10 2:21 a.m.27 views

CVE-2026-44405 vulnerabilities

Vulnerabilities for packages: airflow, py3-paramiko, datadog-agent, superset...

3.4CVSS6.4AI score0.00114EPSS
Exploits0
cgr
cgr
added 2026/05/10 1:17 a.m.18 views

CVE-2026-44405 vulnerabilities

Vulnerabilities for packages: duplicity, keep, openstack-nova-2026.1, pgadmin4, py3-paramiko, nemo, keep-fips, datadog-agent, airflow, superset, datadog-agent-fips...

3.4CVSS6.4AI score0.00114EPSS
Exploits0
cgr
cgr
added 2026/05/10 1:17 a.m.24 views

GHSA-R374-RXX8-8654 vulnerabilities

Vulnerabilities for packages: duplicity, keep, openstack-nova-2026.1, pgadmin4, py3-paramiko, nemo, keep-fips, datadog-agent, airflow, superset, datadog-agent-fips...

6.1AI score
Exploits0
wolfi
wolfi
added 2026/04/22 8:0 p.m.12 views

CVE-2026-41066 vulnerabilities

Vulnerabilities for packages: open-webui, airflow, kubeflow-pipelines-visualization-server, datadog-agent...

7.5CVSS6.3AI score0.00324EPSS
Exploits1
wolfi
wolfi
added 2026/04/22 8:0 p.m.15 views

GHSA-VFMQ-68HX-4JFW vulnerabilities

Vulnerabilities for packages: open-webui, airflow, kubeflow-pipelines-visualization-server, datadog-agent...

6.1AI score
Exploits0
wolfi
wolfi
added 2026/04/11 2:51 a.m.12 views

CVE-2026-32282 vulnerabilities

Vulnerabilities for packages: cloud-provider-aws, karpenter, external-secrets-operator, knative-serving, knative-eventing, flux, nerdctl, k3s, ingress-nginx-controller, gatekeeper, kubescape, cilium, redka, runc, zot, cilium-envoy, aws-flb-kinesis, chezmoi, gitaly, aactl, kube-fluentd-operator,...

6.4CVSS6.8AI score0.00292EPSS
Exploits0
wolfi
wolfi
added 2026/04/11 2:51 a.m.9 views

GHSA-7MR4-XJXG-34G6 vulnerabilities

Vulnerabilities for packages: flux, kubernetes-csi-driver-hostpath, yunikorn-k8shim, mcp-grafana, terraform-provider-sendgrid, cloud-provider-azure, gatekeeper, kubescape, modelmesh-runtime-adapter, helm, argocd-image-updater, contour, redka, sftpgo-plugin-auth, syft, terraform-provider-time, zot...

6.1AI score
Exploits0
wolfi
wolfi
added 2026/04/10 2:50 p.m.8 views

CVE-2026-33817 vulnerabilities

Vulnerabilities for packages: containerd, fuse-overlayfs-snapshotter, mattermost, datadog-agent, loki, grafana, k3s, zot, kine...

6.1AI score0.00012EPSS
Exploits0
wolfi
wolfi
added 2026/04/10 2:50 p.m.9 views

GHSA-6JWV-W5XF-7J27 vulnerabilities

Vulnerabilities for packages: containerd, fuse-overlayfs-snapshotter, mattermost, datadog-agent, loki, grafana, k3s, zot, kine...

6.1AI score
Exploits0
Rows per page
Query Builder