GHSA-f83r-q8f4-f336LowCVSS 3.7

An attacker sending a large number of crafted DNS queries might be able to trigger a dynamic...

Published
June 25, 2026
Last Modified
June 25, 2026

🔗 CVE IDs covered (1)

📋 Description

An attacker sending a large number of crafted DNS queries might be able to trigger a dynamic block being inserted with a value causing invalid output to be produced in the prometheus endpoint. The prometheus endpoint will then be rejected by the scraper until the dynamic block expires.

🔗 References (3)