Monitoring And Management Security Vulnerabilities and Issues — Monitoring And Management CVE List

Lucene search

PerconaMonitoring And Management

3 matches found

CVE•added 2025/03/11 6:15 p.m.•68 views

CVE-2025-26701

An issue was discovered in Percona PMM Server (OVA) before 3.0.0-1.ova. The default service account credentials can lead to SSH access, use of Sudo to root, and sensitive data exposure. This is fixed in PMM2 2.42.0-1.ova, 2.43.0-1.ova, 2.43.1-1.ova, 2.43.2-1.ova, and 2.44.0-1.ova and in PMM3 3.0.0-...

10CVSS6.7AI score0.00086EPSS

CVE•added 2020/02/06 5:15 p.m.•45 views

CVE-2020-7920

pmm-server in Percona Monitoring and Management (PMM) 2.2.x before 2.2.1 allows unauthenticated denial of service.

7.8CVSS7.5AI score0.00757EPSS

CVE•added 2023/06/06 8:15 p.m.•41 views

CVE-2023-34409

In Percona Monitoring and Management (PMM) server 2.x before 2.37.1, the authenticate function in auth_server.go does not properly formalize and sanitize URL paths to reject path traversal attempts. This allows an unauthenticated remote user, when a crafted POST request is made against unauthentica...

9.8CVSS9.2AI score0.03466EPSS