You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
mend-for-github-combot
changed the title
CVE-2022-32149 (Medium) detected in grafanav5.0.0-beta1
CVE-2022-32149 (High) detected in grafanav5.0.0-beta1
Feb 21, 2023
CVE-2022-32149 - High Severity Vulnerability
Vulnerable Library - grafanav5.0.0-beta1
The tool for beautiful monitoring and metric analytics & dashboards for Graphite, InfluxDB & Prometheus & More
Library home page: https://github.com/grafana/grafana.git
Vulnerable Source Files (1)
/vendor/golang.org/x/text/language/parse.go
Vulnerability Details
An attacker may cause a denial of service by crafting an Accept-Language header which ParseAcceptLanguage will take significant time to parse.
Publish Date: 2022-10-14
URL: CVE-2022-32149
CVSS 3 Score Details (7.5)
Base Score Metrics:
Suggested Fix
Type: Upgrade version
Origin: https://www.cve.org/CVERecord?id=CVE-2022-32149
Release Date: 2022-10-14
Fix Resolution: v0.3.8
The text was updated successfully, but these errors were encountered: