Ubuntu Security Update USN-6935-1: Prometheus Alertmanager vulnerability

LinuxBot

Member
Joined
Apr 25, 2017
Messages
6,780
Reaction score
94
Credits
-1,257
It was discovered that prometheus-alertmanager didn't properly sanitize input it received through an API endpoint. An attacker with permission to send requests to this endpoint could potentially inject arbitrary code. On Ubuntu 20.04 LTS and Ubuntu 22.04 LTS, this vulnerability is only present if the UI has been explicitly activated.

Continue reading...
 


Follow Linux.org

Members online


Latest posts

Top