129 matches found
Malicious code in loki-release (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 75940c2d0ed836d2725549e9704eaefe1d989aa5349c7b27fdf2556be16e32a2 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-5935 Malicious code in loki-release (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 75940c2d0ed836d2725549e9704eaefe1d989aa5349c7b27fdf2556be16e32a2 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
GHSA-FGQ5-Q76C-GX78 vulnerabilities
Vulnerabilities for packages: docker-credential-acr-env, metallb, kube-bench, kubernetes-dashboard, golangci-lint, kaf, cfssl, nri-discovery-kubernetes, render-template, gomplate, grpcurl, protoc-gen-go-grpc, slsa-verifier, supercronic, dgraph, nuclei, nri-couchbase, hey, shfmt,...
Loki: a new private agent for the popular Mythic framework
In July 2024, we discovered the previously unknown Loki backdoor, which was used in a series of targeted attacks. By analyzing the malicious file and open sources, we determined that Loki is a private version of an agent for the open-source Mythic framework. One of the agent's decrypted strings O...
CVE-2024-35255 vulnerabilities
Vulnerabilities for packages: pulumi, rclone, step, flux, grafana-agent-operator, timestamp-authority, datadog-agent, bank-vaults, tempo, airflow, hugo, trivy, fluent-bit-plugin-loki, cosign, argo-events, nuclei, opentelemetry-collector-contrib, restic, harbor-registry, zot, boring-registry, flyt...
CVE-2024-24789 vulnerabilities
Vulnerabilities for packages: fulcio, k3d, newrelic-fluent-bit-output, kubernetes-dashboard-metrics-scraper-fips, helm, crane, cert-exporter, nfs-subdir-external-provisioner, osv-scanner, q, external-dns-fips, node-feature-discovery, kubebuilder, paranoia, aws-flb-firehose, kuberay-operator,...
GHSA-XW73-RW38-6VJC vulnerabilities
Vulnerabilities for packages: zot, k3d, flux-image-reflector-controller, trivy, up, falcoctl, helm, helm-operator-fips, crane, aactl, k8sgpt, vexctl, zarf, goreleaser, scorecard, argo-workflows-fips, cert-manager, guac, rancher-machine, kpt, policy-controller-fips, timoni,...
CVE-2024-24557 vulnerabilities
Vulnerabilities for packages: zot, k3d, flux-image-reflector-controller, trivy, up, falcoctl, helm, helm-operator-fips, crane, aactl, k8sgpt, vexctl, zarf, goreleaser, scorecard, argo-workflows-fips, cert-manager, guac, rancher-machine, kpt, policy-controller-fips, timoni,...
CVE-2023-36649
Insertion of sensitive information in the centralized Grafana logging system in ProLion CryptoSpike 3.0.15P2 allows remote attackers to impersonate other users in web management and the REST API by reading JWT tokens from logs as a Granafa authenticated user or from the Loki REST API without...
CVE-2023-36649
Insertion of sensitive information in the centralized Grafana logging system in ProLion CryptoSpike 3.0.15P2 allows remote attackers to impersonate other users in web management and the REST API by reading JWT tokens from logs as a Granafa authenticated user or from the Loki REST API without...
CVE-2023-36649
Insertion of sensitive information in the centralized Grafana logging system in ProLion CryptoSpike 3.0.15P2 allows remote attackers to impersonate other users in web management and the REST API by reading JWT tokens from logs as a Granafa authenticated user or from the Loki REST API without...
Authentication flaw
Insertion of sensitive information in the centralized Grafana logging system in ProLion CryptoSpike 3.0.15P2 allows remote attackers to impersonate other users in web management and the REST API by reading JWT tokens from logs as a Granafa authenticated user or from the Loki REST API without...
CVE-2023-36649
Insertion of sensitive information in the centralized Grafana logging system in ProLion CryptoSpike 3.0.15P2 allows remote attackers to impersonate other users in web management and the REST API by reading JWT tokens from logs as a Granafa authenticated user or from the Loki REST API without...
CVE-2023-36649
ProLion CryptoSpike 3.0.15P2 is affected by an authentication/authorization issue arising from insertion of sensitive information into the centralized Grafana logging system, enabling remote attackers to impersonate other users in web management and REST API by reading JWT tokens from logs or the...
PT-2023-25652 · Grafana +1 · Loki +2
Name of the Vulnerable Software and Affected Versions: ProLion CryptoSpike version 3.0.15P2 Description: The issue allows remote attackers to impersonate other users in web management and the REST API by reading JWT tokens from logs as a Grafana authenticated user or from the Loki REST API withou...
GHSA-JQ35-85CJ-FJ4P vulnerabilities
Vulnerabilities for packages: k3d, up, rancher-agent, aactl, scorecard, cert-manager, paranoia, kpt, bom, falco, kubescape, skaffold, k3s, spire-server-fips, tekton-chains, ctop, slsa-verifier, chartmuseum, falcoctl-fips...
CVE-2023-0813
A flaw was found in the Network Observability plugin for OpenShift console. Unless the Loki authToken configuration is set to FORWARD mode, authentication is no longer enforced, allowing any user who can connect to the OpenShift Console in an OpenShift cluster to retrieve flows without...
CVE-2023-0813
A flaw was found in the Network Observability plugin for OpenShift console. Unless the Loki authToken configuration is set to FORWARD mode, authentication is no longer enforced, allowing any user who can connect to the OpenShift Console in an OpenShift cluster to retrieve flows without...
Authentication flaw
A flaw was found in the Network Observability plugin for OpenShift console. Unless the Loki authToken configuration is set to FORWARD mode, authentication is no longer enforced, allowing any user who can connect to the OpenShift Console in an OpenShift cluster to retrieve flows without...
PT-2023-16542 · Red Hat +1 · Openshift Console +1
Name of the Vulnerable Software and Affected Versions: OpenShift console affected versions not specified Description: A flaw was found in the Network Observability plugin for OpenShift console. Unless the Loki authToken configuration is set to FORWARD mode, authentication is no longer enforced,...