FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2025-07-27 12:33:51 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
6548cb01-4c33-11f0-8a97-6c3be5272acd	Grafana -- DingDing contact points exposed in Grafana Alerting Grafana Labs reports: An incident occurred where the DingDing alerting integration URL was inadvertently exposed to viewers due to a setting oversight, which we learned about through a bug bounty report. The CVSS 3.0 score for this vulnerability is 4.3 (Medium). Discovery 2025-04-05 Entry 2025-06-18 grafana < 10.4.19+security-01 >= 11.0.0 lt 11.2.10+security-01 >= 11.3.0 lt 11.3.7+security-01 >= 11.4.0 lt 11.4.5+security-01 >= 11.5.0 lt 11.5.5+security-01 >= 11.6.0 lt 11.6.2+security-01 >= 12.0.0 lt 12.0.1+security-01 grafana8 >= 8.0.0 grafana9 >= 9.0.0 CVE-2025-3415 https://grafana.com/blog/2025/06/13/grafana-security-update-medium-severity-security-release-for-cve-2025-3415/

VuXML ID

Description

6548cb01-4c33-11f0-8a97-6c3be5272acd

Grafana -- DingDing contact points exposed in Grafana Alerting

Grafana Labs reports:

An incident occurred where the DingDing alerting integration URL was inadvertently exposed to viewers due to a setting oversight, which we learned about through a bug bounty report.

The CVSS 3.0 score for this vulnerability is 4.3 (Medium).

Discovery 2025-04-05
Entry 2025-06-18
grafana

< 10.4.19+security-01

>= 11.0.0 lt 11.2.10+security-01

>= 11.3.0 lt 11.3.7+security-01

>= 11.4.0 lt 11.4.5+security-01

>= 11.5.0 lt 11.5.5+security-01

>= 11.6.0 lt 11.6.2+security-01

>= 12.0.0 lt 12.0.1+security-01

grafana8

>= 8.0.0

grafana9

>= 9.0.0

CVE-2025-3415
https://grafana.com/blog/2025/06/13/grafana-security-update-medium-severity-security-release-for-cve-2025-3415/