Percona Monitoring And Management
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in Percona Monitoring And Management.
By the Year
In 2026 there have been 0 vulnerabilities in Percona Monitoring And Management. Monitoring And Management did not have any published security vulnerabilities last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 0 | 0.00 |
| 2025 | 0 | 0.00 |
| 2024 | 0 | 0.00 |
| 2023 | 1 | 9.80 |
| 2022 | 0 | 0.00 |
| 2021 | 0 | 0.00 |
| 2020 | 1 | 0.00 |
It may take a day or so for new Monitoring And Management vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Percona Monitoring And Management Security Vulnerabilities
PMM 2.x (2.37.1) Path Trvsl in auth_server.go Unauth Remote POST Escalation
CVE-2023-34409
9.8 - Critical
- June 06, 2023
In Percona Monitoring and Management (PMM) server 2.x before 2.37.1, the authenticate function in auth_server.go does not properly formalize and sanitize URL paths to reject path traversal attempts. This allows an unauthenticated remote user, when a crafted POST request is made against unauthenticated API routes, to access otherwise protected API routes leading to escalation of privileges and information disclosure.
Directory traversal
pmm-server in Percona Monitoring and Management (PMM) 2.2.x before 2.2.1
CVE-2020-7920
- February 06, 2020
pmm-server in Percona Monitoring and Management (PMM) 2.2.x before 2.2.1 allows unauthenticated denial of service.
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Percona Monitoring And Management or by Percona? Click the Watch button to subscribe.
