漏洞描述
Prometheus Time Series Collection and ProcessingServer是一个开源的监控工具,主要用于收集和处理时间序列数据。它适用于记录时间序列数据,并且具有强大的查询语言PromQL以及多种可视化图形界面。Prometheus集群运维监控系统Agent端远程命令执行漏洞,攻击者可利用此漏洞执行系统命令。
Prometheus集群运维监控系统Agent端远程命令执行漏洞
PoC代码
暂无相关漏洞推荐
- POC CVE-2021-29622: Prometheus - Open Redirect
- POC CVE-2021-29622: Prometheus v2.23.0 to v2.26.0, and v2.27.0 Open Redirect
- POC prometheus-metrics: Prometheus Metrics - Detect
- POC prometheus-promtail: Prometheus Promtail - Exposure
- POC prometheus-log: Exposed Prometheus
- POC prometheus-unauth: Prometheus Monitoring System - Unauthenticated
- POC thanos-prometheus-exposure: Thanos Prometheus Setup - Exposure
- Prometheus Time Series Collection and Processing Server信息泄露
- Prometheus 未授权访问