wid-sec-w-2026-1292
·
Published 2026-04-27
·
View on BSI CERT-Bund ↗
Prometheus: Multiple Vulnerabilities
CVSS N/A
NONE
Risk Summary
Ein Angreifer kann mehrere Schwachstellen in Prometheus ausnutzen, um einen Denial of Service Angriff durchzuführen, vertrauliche Informationen offenzulegen oder Cross-Site-Scripting-Angriffe durchzuführen.
CVEs (2)
Affected Vendors
Open Source
Affected Products (6)
Open Source
·
Prometheus
<3.5.3
Open Source
·
Prometheus
3.5.3
Open Source
·
Prometheus
<3.11.3
Open Source
·
Prometheus
3.11.3
Open Source
·
Prometheus
>=2.49.0
Open Source
·
Prometheus
>=2.49.0
Get alerted to advisories like this
OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.
Start free trial Learn more