Percona Monitoring And Management
By the Year
In 2024 there have been 0 vulnerabilities in Percona Monitoring And Management . Last year Monitoring And Management had 1 security vulnerability published. Right now, Monitoring And Management is on track to have less security vulnerabilities in 2024 than it did last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2024 | 0 | 0.00 |
| 2023 | 1 | 9.80 |
| 2022 | 0 | 0.00 |
| 2021 | 0 | 0.00 |
| 2020 | 1 | 7.50 |
| 2019 | 0 | 0.00 |
| 2018 | 0 | 0.00 |
It may take a day or so for new Monitoring And Management vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Percona Monitoring And Management Security Vulnerabilities
In Percona Monitoring and Management (PMM) server 2.x before 2.37.1
CVE-2023-34409
9.8 - Critical
- June 06, 2023
In Percona Monitoring and Management (PMM) server 2.x before 2.37.1, the authenticate function in auth_server.go does not properly formalize and sanitize URL paths to reject path traversal attempts. This allows an unauthenticated remote user, when a crafted POST request is made against unauthenticated API routes, to access otherwise protected API routes leading to escalation of privileges and information disclosure.
Directory traversal
pmm-server in Percona Monitoring and Management (PMM) 2.2.x before 2.2.1
CVE-2020-7920
7.5 - High
- February 06, 2020
pmm-server in Percona Monitoring and Management (PMM) 2.2.x before 2.2.1 allows unauthenticated denial of service.
Resource Exhaustion
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Percona Monitoring And Management or by Percona? Click the Watch button to subscribe.
