Lucene search
K

4 matches found

NVD
NVD
added 2026/02/12 10:16 p.m.7 views

CVE-2026-26069

Scraparr is a Prometheus Exporter for various components of the arr Suite. From 3.0.0-beta to before 3.0.2, when the Readarr integration was enabled, the exporter exposed the configured Readarr API key as the alias metric label value. Users were affected only if all of the following conditions ar...

9.1CVSS0.00295EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/02/12 9:33 p.m.3 views

CVE-2026-26069 Scraparr Readarr Integration exposes sensitive values as metric labels.

Scraparr is a Prometheus Exporter for various components of the arr Suite. From 3.0.0-beta to before 3.0.2, when the Readarr integration was enabled, the exporter exposed the configured Readarr API key as the alias metric label value. Users were affected only if all of the following conditions ar...

9.1CVSS5.5AI score0.00295EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/02/12 9:33 p.m.5 views

CVE-2026-26069

Scraparr is a Prometheus Exporter for various components of the arr Suite. From 3.0.0-beta to before 3.0.2, when the Readarr integration was enabled, the exporter exposed the configured Readarr API key as the alias metric label value. Users were affected only if all of the following conditions ar...

9.1CVSS5.5AI score0.00295EPSS
Exploits0References4Affected Software1
Hacker One
Hacker One
added 2020/01/14 6:1 p.m.56 views

Kubernetes: Kubelet resource exhaustion attack via metric label cardinality explosion from unauthenticated requests

Report Submission Form Summary: Malicious clients can potentially DOS a kubelet by sending a high amount of specially crafted requests to the kubelet's HTTP server. For each request the kubelet updates/sets 3 metrics: - kubelethttprequeststotal Counter - kubelethttprequestsdurationseconds Histogr...

3.3CVSS5.3AI score0.01141EPSS
Exploits0
Rows per page
Query Builder