pkg:Debian/prometheus

All known vulnerabilities

• HIGH7.5CVE-2026-42154Prometheus: remote read endpoint allows denial of service via crafted snappy payload
  from 0
• HIGH7.5CVE-2026-42151Prometheus Azure AD remote write OAuth client secret exposed via config API
  from 0
• MEDIUM6.1CVE-2026-44903Prometheus: Stored XSS via crafted histogram bucket label values in the heatmap display of the old Prometheus web UI
  from 0
• MEDIUM5.4Withdrawn Advisory: Prometheus XSS Vulnerability
  from 0, < 2.7.1+ds-1