394 matches found
CVE-2026-9270
DataDog::DogStatsd for Perl (up to version 0.07) is vulnerable to metric injections due to insufficient input sanitization in the send_stats pathway. The stat name is not stripped of newlines, enabling prefix manipulation; the value (delta) is not validated, allowing injection via set/gauge/count...
PT-2026-46969
Name of the Vulnerable Software and Affected Versions DataDog::DogStatsd versions prior to 0.08 Description DataDog::DogStatsd does not properly sanitize input, which allows metric injections from untrusted sources. The format event method, utilized by the event method, fails to validate tag...
DataDog::DogStatsd 安全漏洞
DataDog::DogStatsd is a Perl monitoring client library developed by DataDog Corporation that supports the DogStatsD protocol. Versions of DataDog::DogStatsd prior to 0.07 contained security vulnerabilities. These vulnerabilities stemmed from improper handling of inputs, the sendstats method not...
DataDog::DogStatsd 安全漏洞
DataDog::DogStatsD is a Perl monitoring client library developed by DataDog Corporation that supports the DogStatsD protocol. Versions of DataDog::DogStatsD prior to 0.07 contained security vulnerabilities; these vulnerabilities stemmed from improper handling of inputs, allowing for the injection...
Malicious code in cdktn-provider-datadog (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 29ce930466b101c48ae641d7e4ad57f3d5169b9f14b1e041e4264e75cbfd965b Package name cdktn-provider-datadog is a single-character variant f→n of HashiCorp's widely-used cdktf-provider-datadog CDKTF provider. README and...
MAL-2026-4824 Malicious code in cdktn-provider-datadog (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 29ce930466b101c48ae641d7e4ad57f3d5169b9f14b1e041e4264e75cbfd965b Package name cdktn-provider-datadog is a single-character variant f→n of HashiCorp's widely-used cdktf-provider-datadog CDKTF provider. README and...
GHSA-QCCP-GFCP-XXVC vulnerabilities
Vulnerabilities for packages: litellm, py3.9-pip, neuvector-manager, tensorflow-cpu-jupyter, gitlab-cng, py3-hashin, py3-cassandra-medusa, text-generation-inference, synapse, az, wazuh-manager, authentik-fips, spamcheck, datadog-agent, awx, azureml-inference-server-http-fips, jwt-tool,...
CVE-2026-44432 vulnerabilities
Vulnerabilities for packages: litellm, tensorflow-cpu-jupyter, neuvector-manager, gitlab-cng, py3-hashin, py3-cassandra-medusa, text-generation-inference, synapse, az, wazuh-manager, authentik-fips, spamcheck, datadog-agent, awx, azureml-inference-server-http-fips, jwt-tool,...
GHSA-MF9V-MFXR-J63J vulnerabilities
Vulnerabilities for packages: litellm, tensorflow-cpu-jupyter, neuvector-manager, gitlab-cng, py3-hashin, py3-cassandra-medusa, text-generation-inference, synapse, az, wazuh-manager, authentik-fips, spamcheck, datadog-agent, awx, azureml-inference-server-http-fips, jwt-tool,...
CVE-2026-44431 vulnerabilities
Vulnerabilities for packages: litellm, py3.9-pip, neuvector-manager, tensorflow-cpu-jupyter, gitlab-cng, py3-hashin, py3-cassandra-medusa, text-generation-inference, synapse, az, wazuh-manager, authentik-fips, spamcheck, datadog-agent, awx, azureml-inference-server-http-fips, jwt-tool,...
GHSA-R374-RXX8-8654 vulnerabilities
Vulnerabilities for packages: airflow, py3-paramiko, datadog-agent, superset...
CVE-2026-44405 vulnerabilities
Vulnerabilities for packages: airflow, py3-paramiko, datadog-agent, superset...
CVE-2026-44405 vulnerabilities
Vulnerabilities for packages: duplicity, keep, openstack-nova-2026.1, pgadmin4, py3-paramiko, nemo, keep-fips, datadog-agent, airflow, superset, datadog-agent-fips...
GHSA-R374-RXX8-8654 vulnerabilities
Vulnerabilities for packages: duplicity, keep, openstack-nova-2026.1, pgadmin4, py3-paramiko, nemo, keep-fips, datadog-agent, airflow, superset, datadog-agent-fips...
CVE-2026-41066 vulnerabilities
Vulnerabilities for packages: open-webui, airflow, kubeflow-pipelines-visualization-server, datadog-agent...
GHSA-VFMQ-68HX-4JFW vulnerabilities
Vulnerabilities for packages: open-webui, airflow, kubeflow-pipelines-visualization-server, datadog-agent...
CVE-2026-32282 vulnerabilities
Vulnerabilities for packages: cloud-provider-aws, karpenter, external-secrets-operator, knative-serving, knative-eventing, flux, nerdctl, k3s, ingress-nginx-controller, gatekeeper, kubescape, cilium, redka, runc, zot, cilium-envoy, aws-flb-kinesis, chezmoi, gitaly, aactl, kube-fluentd-operator,...
GHSA-7MR4-XJXG-34G6 vulnerabilities
Vulnerabilities for packages: flux, kubernetes-csi-driver-hostpath, yunikorn-k8shim, mcp-grafana, terraform-provider-sendgrid, cloud-provider-azure, gatekeeper, kubescape, modelmesh-runtime-adapter, helm, argocd-image-updater, contour, redka, sftpgo-plugin-auth, syft, terraform-provider-time, zot...
CVE-2026-33817 vulnerabilities
Vulnerabilities for packages: containerd, fuse-overlayfs-snapshotter, mattermost, datadog-agent, loki, grafana, k3s, zot, kine...
GHSA-6JWV-W5XF-7J27 vulnerabilities
Vulnerabilities for packages: containerd, fuse-overlayfs-snapshotter, mattermost, datadog-agent, loki, grafana, k3s, zot, kine...