CVE-2022-46146
CVE-2022-46146 affects Prometheus Exporter Toolkit prior to 0.7.2 and 0.8.2; attackers with access to the Prometheus web.yml and hashed passwords can poison the built-in authentication cache. A fix exists in 0.7.2 and 0.8.2. Attacker needs access to the hashed password to exploit. Upgrade to 0.7....