pkg:Go/github.com/prometheus/prometheus

共 6 筆 CVEHIGH2MEDIUM3

✅ 檢查你的版本

所有已知漏洞

  • HIGH7.5CVE-2026-42154Prometheus: Remote read endpoint allows denial of service via crafted snappy payload
    from 0, < 0.311.3
  • HIGH7.5CVE-2026-42151Prometheus Azure AD remote write OAuth client secret exposed via config API
    >= 0.45.2, < 0.311.3
  • MEDIUM6.1CVE-2026-40179Prometheus has Stored XSS via metric names and label values in Prometheus web UI tooltips and metrics explorer
    >= 3.0.0, <= 3.5.1
  • MEDIUM6.1CVE-2021-29622Arbitrary redirects under /new endpoint
    >= 2.23.0, < 2.26.1
  • MEDIUM5.4CVE-2019-3826Withdrawn Advisory: Prometheus XSS Vulnerability
    from 0, < 2.7.1
  • CVE-2026-44903Prometheus vulnerable to stored XSS via crafted histogram bucket label values in the old web UI heatmap display
    from 0, < 0.311.3