Lucene search
K

66 matches found

OSV
OSV
added 2024/09/30 2:31 p.m.16 views

RLSA-2024:6946 Important: grafana-pcp security update

The Grafana plugin for Performance Co-Pilot includes datasources for scalable time series from pmseries and Redis, live PCP metrics and bpftrace scripts from pmdabpftrace, as well as several dashboards. Security Fixes: encoding/gob: golang: Calling Decoder.Decode on a message which contains deepl...

7.5CVSS8.2AI score0.01127EPSS
Exploits0References2
Atlassian
Atlassian
added 2024/04/09 1:53 a.m.44 views

Injection com.fasterxml.jackson.core:jackson-databind Dependency in Crowd Data Center and Server

This High severity com.fasterxml.jackson.core:jackson-databind Dependency vulnerability was introduced in versions 5.0.0, 5.1.0, and 5.2.0 of Crowd Data Center and Server. This com.fasterxml.jackson.core:jackson-databind Dependency vulnerability, with a CVSS Score of 8.1 and a CVSS Vector of...

8.8CVSS7AI score0.10379EPSS
Exploits1
OSV
OSV
added 2024/04/02 12:0 a.m.65 views

ALSA-2024:1644 Important: grafana-pcp security and bug fix update

The Grafana plugin for Performance Co-Pilot includes datasources for scalable time series from pmseries and Redis, live PCP metrics and bpftrace scripts from pmdabpftrace, as well as several dashboards. Security Fixes: golang-fips/openssl: Memory leaks in code encrypting and decrypting RSA payloa...

7.5CVSS8AI score0.01533EPSS
Exploits0References4
OSV
OSV
added 2023/05/16 12:0 a.m.37 views

ALSA-2023:2785 Moderate: grafana-pcp security update

The Grafana plugin for Performance Co-Pilot includes datasources for scalable time series from pmseries and Redis, live PCP metrics and bpftrace scripts from pmdabpftrace, as well as several dashboards. Security Fixes: golang: net/http: handle server errors after sending GOAWAY CVE-2022-27664 For...

7.5CVSS7.6AI score0.02607EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2023/05/09 10:11 a.m.24 views

Moderate: Red Hat Security Advisory: grafana-pcp security and enhancement update

An update for grafana-pcp is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability fro...

7.5CVSS6.7AI score0.02607EPSS
Exploits0References4
AlmaLinux
AlmaLinux
added 2023/05/09 12:0 a.m.58 views

Moderate: grafana-pcp security and enhancement update

The Grafana plugin for Performance Co-Pilot includes datasources for scalable time series from pmseries and Redis, live PCP metrics and bpftrace scripts from pmdabpftrace, as well as several dashboards. Security Fixes: golang: net/http: handle server errors after sending GOAWAY CVE-2022-27664 For...

7.5CVSS7.9AI score0.02607EPSS
Exploits0References4
Rockylinux
Rockylinux
added 2022/11/15 6:19 a.m.41 views

grafana-pcp security update

An update is available for grafana-pcp. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The Grafana plugin for Performance Co-Pilot includes datasources for...

7.5CVSS7.5AI score0.01618EPSS
Exploits2
OSV
OSV
added 2022/11/15 6:19 a.m.38 views

RLSA-2022:8250 Moderate: grafana-pcp security update

The Grafana plugin for Performance Co-Pilot includes datasources for scalable time series from pmseries and Redis, live PCP metrics and bpftrace scripts from pmdabpftrace, as well as several dashboards. Security Fixes: golang: net/http: improper sanitization of Transfer-Encoding header...

7.5CVSS7.6AI score0.01618EPSS
Exploits2References7
AlmaLinux
AlmaLinux
added 2022/11/15 12:0 a.m.63 views

Moderate: grafana-pcp security update

The Grafana plugin for Performance Co-Pilot includes datasources for scalable time series from pmseries and Redis, live PCP metrics and bpftrace scripts from pmdabpftrace, as well as several dashboards. Security Fixes: golang: net/http: improper sanitization of Transfer-Encoding header...

7.5CVSS7.6AI score0.01618EPSS
Exploits2References14
RedHat Linux
RedHat Linux
added 2022/11/08 9:46 a.m.97 views

Moderate: Red Hat Security Advisory: grafana-pcp security update

An update for grafana-pcp is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability fro...

7.5CVSS6.7AI score0.01618EPSS
Exploits2References8
Rockylinux
Rockylinux
added 2022/11/08 6:25 a.m.40 views

grafana-pcp security update

An update is available for grafana-pcp. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The Grafana plugin for Performance Co-Pilot includes datasources for...

7.5CVSS7.5AI score0.01618EPSS
Exploits2
OSV
OSV
added 2022/11/08 12:0 a.m.30 views

ALSA-2022:7648 Moderate: grafana-pcp security update

The Grafana plugin for Performance Co-Pilot includes datasources for scalable time series from pmseries and Redis, live PCP metrics and bpftrace scripts from pmdabpftrace, as well as several dashboards. Security Fixes: golang: net/http: improper sanitization of Transfer-Encoding header...

7.5CVSS7.7AI score0.01618EPSS
Exploits2References14
AlmaLinux
AlmaLinux
added 2022/11/08 12:0 a.m.64 views

Moderate: grafana-pcp security update

The Grafana plugin for Performance Co-Pilot includes datasources for scalable time series from pmseries and Redis, live PCP metrics and bpftrace scripts from pmdabpftrace, as well as several dashboards. Security Fixes: golang: net/http: improper sanitization of Transfer-Encoding header...

7.5CVSS7.6AI score0.01618EPSS
Exploits2References14
Fedora
Fedora
added 2022/07/20 1:40 a.m.18 views

[SECURITY] Fedora 35 Update: grafana-pcp-3.2.0-2.fc35

This Grafana plugin for Performance Co-Pilot includes datasources for scalable time series from pmseries1 and Redis, live PCP metrics and bpftrace scripts from pmdabpftrace1, as well as several dashboards...

1.3AI score
Exploits0
0day.today
0day.today
added 2021/11/07 12:0 a.m.562 views

Pentaho Business Analytics / Pentaho Business Server 9.1 SQL Injection Vulnerability

Pentaho allows users to create and manage Data Sources. Users can select a Data Source when creating a Dashboard through the Pentaho User Console. When a Data Source is added, Pentaho makes a HTTP request to the dashboards editor /pentaho/api/repos/dashboards/editor in order to test the connectio...

9.8CVSS9.1AI score0.51653EPSS
Exploits6
Oracle linux
Oracle linux
added 2021/05/25 12:0 a.m.43 views

grafana security, bug fix, and enhancement update

7.3.6-2 - change working dir to in grafana-cli wrapper fixes Red Hat BZ 1916083 - add pcp-redis-datasource to allowloadingunsignedplugins config option 7.3.6-1 - update to 7.3.6 tagged upstream community sources, see CHANGELOG - remove dependency on SAML not supported in the open source version o...

10CVSS0.1AI score0.04872EPSS
Exploits1
Debian CVE
Debian CVE
added 2020/12/17 6:43 p.m.30 views

CVE-2020-35491

FasterXML jackson-databind 2.x before 2.9.10.8 mishandles the interaction between serialization gadgets and typing, related to org.apache.commons.dbcp2.datasources.SharedPoolDataSource...

8.1CVSS8.1AI score0.09477EPSS
Exploits1
OPENSUSE Linux
OPENSUSE Linux
added 2020/10/04 12:0 a.m.91 views

Security update for grafana (moderate)

openSUSE Security Update: Security update for grafana Announcement ID: openSUSE-SU-2020:1611-1 Rating: moderate References: 1044444 1044933 1115960 1170557 Cross-References: CVE-2018-19039 CVE-2019-15043 CVE-2020-12245 CVE-2020-13379 Affected Products: openSUSE Backports SLE-15-SP1 An update that...

8.2CVSS8AI score0.99856EPSS
Exploits6References4
Hacker One
Hacker One
added 2019/12/26 12:27 p.m.62 views

U.S. Dept Of Defense: Publicly accessible Grafana install allows pivoting to Prometheus datasource

Summary: A publicly accessible Grafana install exposes semi sensitive Dashboards. This also exposes the Prometheus proxied datasources which allow direct queries to a Prometheus instance which reveals sensitive data an opens the instance up to potential DoS via crafted requests. Description: Impa...

0.5AI score
Exploits0
NVD
NVD
added 2019/08/28 4:15 p.m.16 views

CVE-2019-13348

In Knowage through 6.1.1, an authenticated user who accesses the datasources page will gain access to any data source credentials in cleartext, which includes databases...

8.8CVSS8.7AI score0.01467EPSS
Exploits1References1
Rows per page
Query Builder