High severityNVD Advisory· Published Feb 15, 2022· Updated Apr 23, 2025

Uncontrolled Resource Consumption in promhttp

CVE-2022-21698

Description

client_golang is the instrumentation library for Go applications in Prometheus, and the promhttp package in client_golang provides tooling around HTTP servers and clients. In client_golang prior to version 1.11.1, HTTP server is susceptible to a Denial of Service through unbounded cardinality, and potential memory exhaustion, when handling requests with non-standard HTTP methods. In order to be affected, an instrumented software must use any of promhttp.InstrumentHandler* middleware except RequestsInFlight; not filter any specific methods (e.g GET) before middleware; pass metric with method label name to our middleware; and not have any firewall/LB/proxy that filters away requests with unknown method. client_golang version 1.11.1 contains a patch for this issue. Several workarounds are available, including removing the method label name from counter/gauge used in the InstrumentHandler; turning off affected promhttp handlers; adding custom middleware before promhttp handler that will sanitize the request method given by Go http.Request; and using a reverse proxy or web application firewall, configured to only allow a limited set of methods.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Prometheus client_golang promhttp handlers allow unbounded cardinality leading to DoS via crafted HTTP methods.

Vulnerability

In client_golang prior to version 1.11.1, the promhttp package's instrumentation middleware (InstrumentHandler* except RequestsInFlight) does not validate the HTTP method label value. An attacker can send requests with arbitrary, non-standard HTTP methods, causing the creation of an unbounded number of time series in the method label dimension. This leads to unbounded cardinality and potential memory exhaustion, resulting in a Denial of Service (DoS) [1][2][3]. Affected versions are those before 1.11.1.

Exploitation

No authentication or special network position is required; the attacker only needs to send HTTP requests to an instrumented endpoint. The target must be using one of the affected promhttp.InstrumentHandler* middleware, must not filter HTTP methods before the middleware, must pass a metric with a method label to the middleware, and must not have a firewall, load balancer, or proxy that blocks unknown HTTP methods. The attacker sends a series of requests with unique, crafted non-standard methods (e.g., arbitrary strings) to exhaust server memory [3].

Impact

Successful exploitation results in memory exhaustion and Denial of Service, making the instrumented HTTP server unavailable. There is no direct impact on confidentiality or integrity in terms of data exposure or modification; the primary impact is availability [3].

Mitigation

The fix is included in client_golang version 1.11.1, released on 2022-02-15 [3][4]. Several workarounds exist: remove the method label from the counter or gauge used in the InstrumentHandler; disable the affected handlers; add custom middleware before the promhttp handler to sanitize the request method; or deploy a reverse proxy or web application firewall configured to allow only standard HTTP methods [1][3].

References

AI Insight generated on May 21, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.

Affected packages

Versions sourced from the GitHub Security Advisory.

Package	Affected versions	Patched versions
github.com/prometheus/client_golangGo	< 1.11.1	1.11.1

Affected products

175

osv-coords174 versions
pkg:apk/chainguard/dynamic-localpv-provisioner pkg:apk/chainguard/dynamic-localpv-provisioner-fips pkg:apk/chainguard/prometheus-postgres-exporter-0.10 pkg:apk/wolfi/dynamic-localpv-provisioner pkg:golang/github.com/prometheus/client_golang pkg:rpm/almalinux/aardvark-dns pkg:rpm/almalinux/buildah pkg:rpm/almalinux/buildah-tests pkg:rpm/almalinux/cockpit-podman pkg:rpm/almalinux/conmon pkg:rpm/almalinux/containernetworking-plugins pkg:rpm/almalinux/containers-common pkg:rpm/almalinux/container-selinux pkg:rpm/almalinux/crit pkg:rpm/almalinux/criu pkg:rpm/almalinux/criu-devel pkg:rpm/almalinux/criu-libs pkg:rpm/almalinux/crun pkg:rpm/almalinux/fuse-overlayfs pkg:rpm/almalinux/grafana pkg:rpm/almalinux/libslirp pkg:rpm/almalinux/libslirp-devel pkg:rpm/almalinux/netavark pkg:rpm/almalinux/oci-seccomp-bpf-hook pkg:rpm/almalinux/podman pkg:rpm/almalinux/podman-catatonit pkg:rpm/almalinux/podman-docker pkg:rpm/almalinux/podman-gvproxy pkg:rpm/almalinux/podman-plugins pkg:rpm/almalinux/podman-remote pkg:rpm/almalinux/podman-tests pkg:rpm/almalinux/python3-criu pkg:rpm/almalinux/python3-podman pkg:rpm/almalinux/runc pkg:rpm/almalinux/skopeo pkg:rpm/almalinux/skopeo-tests pkg:rpm/almalinux/slirp4netns pkg:rpm/almalinux/toolbox pkg:rpm/almalinux/toolbox-tests pkg:rpm/almalinux/udica pkg:rpm/opensuse/firewalld&distro=openSUSE%20Leap%2015.3 pkg:rpm/opensuse/golang-github-prometheus-alertmanager&distro=openSUSE%20Leap%2015.3 pkg:rpm/opensuse/golang-github-prometheus-alertmanager&distro=openSUSE%20Leap%2015.4 pkg:rpm/opensuse/golang-github-prometheus-node_exporter&distro=openSUSE%20Leap%2015.3 pkg:rpm/opensuse/golang-github-prometheus-node_exporter&distro=openSUSE%20Leap%2015.4 pkg:rpm/opensuse/golang-github-prometheus-prometheus&distro=openSUSE%20Leap%2015.3 pkg:rpm/opensuse/golang-github-prometheus-prometheus&distro=openSUSE%20Leap%2015.4 pkg:rpm/opensuse/podman&distro=openSUSE%20Leap%2015.3 pkg:rpm/opensuse/podman&distro=openSUSE%20Leap%2015.4 pkg:rpm/opensuse/podman&distro=openSUSE%20Leap%20Micro%205.2 pkg:rpm/suse/firewalld&distro=SUSE%20Linux%20Enterprise%20Micro%205.1 pkg:rpm/suse/firewalld&distro=SUSE%20Linux%20Enterprise%20Micro%205.2 pkg:rpm/suse/firewalld&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP3 pkg:rpm/suse/firewalld&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Desktop%20Applications%2015%20SP3 pkg:rpm/suse/golang-github-boynux-squid_exporter&distro=SUSE%20Manager%20Client%20Tools%2012-BETA pkg:rpm/suse/golang-github-lusitaniae-apache_exporter&distro=SUSE%20Manager%20Client%20Tools%2012 pkg:rpm/suse/golang-github-lusitaniae-apache_exporter&distro=SUSE%20Manager%20Client%20Tools%2012-BETA pkg:rpm/suse/golang-github-lusitaniae-apache_exporter&distro=SUSE%20Manager%20Proxy%20Module%204.1 pkg:rpm/suse/golang-github-lusitaniae-apache_exporter&distro=SUSE%20Manager%20Server%20Module%204.1 pkg:rpm/suse/golang-github-prometheus-alertmanager&distro=SUSE%20Enterprise%20Storage%206 pkg:rpm/suse/golang-github-prometheus-alertmanager&distro=SUSE%20Manager%20Client%20Tools%2012 pkg:rpm/suse/golang-github-prometheus-alertmanager&distro=SUSE%20Manager%20Client%20Tools%2012-BETA pkg:rpm/suse/golang-github-prometheus-alertmanager&distro=SUSE%20Manager%20Client%20Tools%2015 pkg:rpm/suse/golang-github-prometheus-alertmanager&distro=SUSE%20Manager%20Proxy%20Module%204.1 pkg:rpm/suse/golang-github-prometheus-alertmanager&distro=SUSE%20Manager%20Proxy%20Module%204.2 pkg:rpm/suse/golang-github-prometheus-alertmanager&distro=SUSE%20Manager%20Proxy%20Module%204.3 pkg:rpm/suse/golang-github-prometheus-node_exporter&distro=HPE%20Helion%20OpenStack%208 pkg:rpm/suse/golang-github-prometheus-node_exporter&distro=SUSE%20Enterprise%20Storage%206 pkg:rpm/suse/golang-github-prometheus-node_exporter&distro=SUSE%20Enterprise%20Storage%207 pkg:rpm/suse/golang-github-prometheus-node_exporter&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP1-ESPOS pkg:rpm/suse/golang-github-prometheus-node_exporter&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP1-LTSS pkg:rpm/suse/golang-github-prometheus-node_exporter&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-ESPOS pkg:rpm/suse/golang-github-prometheus-node_exporter&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-LTSS pkg:rpm/suse/golang-github-prometheus-node_exporter&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-ESPOS pkg:rpm/suse/golang-github-prometheus-node_exporter&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-LTSS pkg:rpm/suse/golang-github-prometheus-node_exporter&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP3 pkg:rpm/suse/golang-github-prometheus-node_exporter&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP4 pkg:rpm/suse/golang-github-prometheus-node_exporter&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP3-BCL pkg:rpm/suse/golang-github-prometheus-node_exporter&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP3-LTSS pkg:rpm/suse/golang-github-prometheus-node_exporter&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP4-LTSS pkg:rpm/suse/golang-github-prometheus-node_exporter&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5 pkg:rpm/suse/golang-github-prometheus-node_exporter&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP1-BCL pkg:rpm/suse/golang-github-prometheus-node_exporter&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP1-LTSS pkg:rpm/suse/golang-github-prometheus-node_exporter&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP2-BCL pkg:rpm/suse/golang-github-prometheus-node_exporter&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP2-LTSS pkg:rpm/suse/golang-github-prometheus-node_exporter&distro=SUSE%20Linux%20Enterprise%20Server%2015-LTSS pkg:rpm/suse/golang-github-prometheus-node_exporter&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP3 pkg:rpm/suse/golang-github-prometheus-node_exporter&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP4 pkg:rpm/suse/golang-github-prometheus-node_exporter&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5 pkg:rpm/suse/golang-github-prometheus-node_exporter&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015 pkg:rpm/suse/golang-github-prometheus-node_exporter&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP1 pkg:rpm/suse/golang-github-prometheus-node_exporter&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP2 pkg:rpm/suse/golang-github-prometheus-node_exporter&distro=SUSE%20Manager%20Client%20Tools%2012 pkg:rpm/suse/golang-github-prometheus-node_exporter&distro=SUSE%20Manager%20Client%20Tools%2012-BETA pkg:rpm/suse/golang-github-prometheus-node_exporter&distro=SUSE%20Manager%20Proxy%204.1 pkg:rpm/suse/golang-github-prometheus-node_exporter&distro=SUSE%20Manager%20Proxy%20Module%204.1 pkg:rpm/suse/golang-github-prometheus-node_exporter&distro=SUSE%20Manager%20Retail%20Branch%20Server%204.1 pkg:rpm/suse/golang-github-prometheus-node_exporter&distro=SUSE%20Manager%20Server%204.1 pkg:rpm/suse/golang-github-prometheus-node_exporter&distro=SUSE%20Manager%20Server%20Module%204.1 pkg:rpm/suse/golang-github-prometheus-node_exporter&distro=SUSE%20OpenStack%20Cloud%208 pkg:rpm/suse/golang-github-prometheus-node_exporter&distro=SUSE%20OpenStack%20Cloud%209 pkg:rpm/suse/golang-github-prometheus-node_exporter&distro=SUSE%20OpenStack%20Cloud%20Crowbar%208 pkg:rpm/suse/golang-github-prometheus-node_exporter&distro=SUSE%20OpenStack%20Cloud%20Crowbar%209 pkg:rpm/suse/golang-github-prometheus-prometheus&distro=SUSE%20Enterprise%20Storage%206 pkg:rpm/suse/golang-github-prometheus-prometheus&distro=SUSE%20Manager%20Client%20Tools%2012 pkg:rpm/suse/golang-github-prometheus-prometheus&distro=SUSE%20Manager%20Client%20Tools%2012-BETA pkg:rpm/suse/golang-github-prometheus-prometheus&distro=SUSE%20Manager%20Client%20Tools%2015 pkg:rpm/suse/golang-github-prometheus-prometheus&distro=SUSE%20Manager%20Proxy%20Module%204.1 pkg:rpm/suse/golang-github-prometheus-prometheus&distro=SUSE%20Manager%20Proxy%20Module%204.2 pkg:rpm/suse/golang-github-prometheus-promu&distro=SUSE%20Manager%20Client%20Tools%2012-BETA pkg:rpm/suse/golang-github-QubitProducts-exporter_exporter&distro=SUSE%20Manager%20Client%20Tools%2012 pkg:rpm/suse/golang-github-QubitProducts-exporter_exporter&distro=SUSE%20Manager%20Client%20Tools%2012-BETA pkg:rpm/suse/golang-github-QubitProducts-exporter_exporter&distro=SUSE%20Manager%20Proxy%20Module%204.1 pkg:rpm/suse/golang-github-QubitProducts-exporter_exporter&distro=SUSE%20Manager%20Server%20Module%204.1 pkg:rpm/suse/grafana&distro=SUSE%20Manager%20Client%20Tools%2012 pkg:rpm/suse/grafana&distro=SUSE%20Manager%20Client%20Tools%2012-BETA pkg:rpm/suse/kiwi-desc-saltboot&distro=SUSE%20Manager%20Client%20Tools%2012 pkg:rpm/suse/kiwi-desc-saltboot&distro=SUSE%20Manager%20Client%20Tools%2012-BETA pkg:rpm/suse/mgr-cfg&distro=SUSE%20Manager%20Client%20Tools%2012 pkg:rpm/suse/mgr-custom-info&distro=SUSE%20Manager%20Client%20Tools%2012 pkg:rpm/suse/mgr-daemon&distro=SUSE%20Manager%20Client%20Tools%2012 pkg:rpm/suse/mgr-osad&distro=SUSE%20Manager%20Client%20Tools%2012 pkg:rpm/suse/mgr-push&distro=SUSE%20Manager%20Client%20Tools%2012 pkg:rpm/suse/mgr-push&distro=SUSE%20Manager%20Client%20Tools%2012-BETA pkg:rpm/suse/mgr-virtualization&distro=SUSE%20Manager%20Client%20Tools%2012 pkg:rpm/suse/patterns-suse-manager&distro=SUSE%20Manager%20Proxy%20Module%204.1 pkg:rpm/suse/patterns-suse-manager&distro=SUSE%20Manager%20Server%20Module%204.1 pkg:rpm/suse/podman&distro=SUSE%20Enterprise%20Storage%207.1 pkg:rpm/suse/podman&distro=SUSE%20Linux%20Enterprise%20Micro%205.1 pkg:rpm/suse/podman&distro=SUSE%20Linux%20Enterprise%20Micro%205.2 pkg:rpm/suse/podman&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Containers%2015%20SP3 pkg:rpm/suse/podman&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Containers%2015%20SP4 pkg:rpm/suse/postgresql-jdbc&distro=SUSE%20Manager%20Server%20Module%204.1 pkg:rpm/suse/prometheus-blackbox_exporter&distro=SUSE%20Manager%20Client%20Tools%2012 pkg:rpm/suse/prometheus-blackbox_exporter&distro=SUSE%20Manager%20Client%20Tools%2012-BETA pkg:rpm/suse/prometheus-exporters-formula&distro=SUSE%20Manager%20Server%20Module%204.1 pkg:rpm/suse/prometheus-formula&distro=SUSE%20Manager%20Server%20Module%204.1 pkg:rpm/suse/prometheus-postgres_exporter&distro=SUSE%20Manager%20Client%20Tools%2012 pkg:rpm/suse/prometheus-postgres_exporter&distro=SUSE%20Manager%20Client%20Tools%2012-BETA pkg:rpm/suse/py27-compat-salt&distro=SUSE%20Manager%20Server%20Module%204.1 pkg:rpm/suse/python-hwdata&distro=SUSE%20Manager%20Client%20Tools%2012 pkg:rpm/suse/python-hwdata&distro=SUSE%20Manager%20Client%20Tools%2012-BETA pkg:rpm/suse/rhnlib&distro=SUSE%20Manager%20Client%20Tools%2012 pkg:rpm/suse/rhnlib&distro=SUSE%20Manager%20Client%20Tools%2012-BETA pkg:rpm/suse/spacecmd&distro=SUSE%20Manager%20Client%20Tools%2012 pkg:rpm/suse/spacecmd&distro=SUSE%20Manager%20Client%20Tools%2012-BETA pkg:rpm/suse/spacecmd&distro=SUSE%20Manager%20Proxy%20Module%204.1 pkg:rpm/suse/spacecmd&distro=SUSE%20Manager%20Server%20Module%204.1 pkg:rpm/suse/spacewalk-backend&distro=SUSE%20Manager%20Proxy%20Module%204.1 pkg:rpm/suse/spacewalk-backend&distro=SUSE%20Manager%20Server%20Module%204.1 pkg:rpm/suse/spacewalk-client-tools&distro=SUSE%20Manager%20Client%20Tools%2012 pkg:rpm/suse/spacewalk-java&distro=SUSE%20Manager%20Server%20Module%204.1 pkg:rpm/suse/spacewalk-koan&distro=SUSE%20Manager%20Client%20Tools%2012 pkg:rpm/suse/spacewalk-oscap&distro=SUSE%20Manager%20Client%20Tools%2012 pkg:rpm/suse/spacewalk-remote-utils&distro=SUSE%20Manager%20Client%20Tools%2012 pkg:rpm/suse/spacewalk-setup&distro=SUSE%20Manager%20Server%20Module%204.1 pkg:rpm/suse/spacewalk-utils&distro=SUSE%20Manager%20Server%20Module%204.1 pkg:rpm/suse/spacewalk-web&distro=SUSE%20Manager%20Proxy%20Module%204.1 pkg:rpm/suse/spacewalk-web&distro=SUSE%20Manager%20Server%20Module%204.1 pkg:rpm/suse/subscription-matcher&distro=SUSE%20Manager%20Server%20Module%204.1 pkg:rpm/suse/supportutils-plugin-salt&distro=SUSE%20Manager%20Client%20Tools%2012 pkg:rpm/suse/supportutils-plugin-salt&distro=SUSE%20Manager%20Client%20Tools%2012-BETA pkg:rpm/suse/supportutils-plugin-susemanager-client&distro=SUSE%20Manager%20Client%20Tools%2012 pkg:rpm/suse/supportutils-plugin-susemanager-client&distro=SUSE%20Manager%20Client%20Tools%2012-BETA pkg:rpm/suse/susemanager&distro=SUSE%20Manager%20Server%20Module%204.1 pkg:rpm/suse/susemanager-doc-indexes&distro=SUSE%20Manager%20Server%20Module%204.1 pkg:rpm/suse/susemanager-docs_en&distro=SUSE%20Manager%20Server%20Module%204.1 pkg:rpm/suse/susemanager-schema&distro=SUSE%20Manager%20Server%20Module%204.1 pkg:rpm/suse/susemanager-sls&distro=SUSE%20Manager%20Server%20Module%204.1 pkg:rpm/suse/suseRegisterInfo&distro=SUSE%20Manager%20Client%20Tools%2012 pkg:rpm/suse/system-user-grafana&distro=SUSE%20Manager%20Client%20Tools%2012-BETA pkg:rpm/suse/system-user-prometheus&distro=SUSE%20Manager%20Client%20Tools%2012-BETA pkg:rpm/suse/uyuni-common-libs&distro=SUSE%20Manager%20Client%20Tools%2012 pkg:rpm/suse/uyuni-common-libs&distro=SUSE%20Manager%20Client%20Tools%2012-BETA
< 3.4.1-r3+ 173 more
- (no CPE)range: < 3.4.1-r3
- (no CPE)range: < 3.5.0-r0
- (no CPE)range: < 0
- (no CPE)range: < 3.4.1-r3
- (no CPE)range: < 1.11.1
- (no CPE)range: < 2:1.0.1-27.module_el8.6.0+2878+e681bc44
- (no CPE)range: < 1:1.24.2-4.module_el8.6.0+2878+e681bc44
- (no CPE)range: < 1:1.24.2-4.module_el8.6.0+2878+e681bc44
- (no CPE)range: < 43-1.module_el8.6.0+2877+8e437bf5
- (no CPE)range: < 2:2.1.0-1.module_el8.6.0+2877+8e437bf5
- (no CPE)range: < 1:1.0.1-2.module_el8.6.0+2878+e681bc44
- (no CPE)range: < 2:1-27.module_el8.6.0+2878+e681bc44
- (no CPE)range: < 2:2.179.1-1.module_el8.6.0+2878+e681bc44
- (no CPE)range: < 3.15-3.module_el8.6.0+2751+06427ca3
- (no CPE)range: < 3.15-3.module_el8.6.0+2877+8e437bf5
- (no CPE)range: < 3.15-3.module_el8.6.0+2751+06427ca3
- (no CPE)range: < 3.15-3.module_el8.6.0+2751+06427ca3
- (no CPE)range: < 1.4.4-1.module_el8.6.0+2877+8e437bf5
- (no CPE)range: < 1.8.2-1.module_el8.6.0+2877+8e437bf5
- (no CPE)range: < 7.5.15-3.el8
- (no CPE)range: < 4.4.0-1.module_el8.6.0+2877+8e437bf5
- (no CPE)range: < 4.4.0-1.module_el8.6.0+2877+8e437bf5
- (no CPE)range: < 2:1.0.1-27.module_el8.6.0+2878+e681bc44
- (no CPE)range: < 1.2.3-3.module_el8.6.0+2877+8e437bf5
- (no CPE)range: < 2:4.0.2-6.module_el8.6.0+2878+e681bc44
- (no CPE)range: < 2:4.0.2-6.module_el8.6.0+2878+e681bc44
- (no CPE)range: < 2:4.0.2-6.module_el8.6.0+2878+e681bc44
- (no CPE)range: < 2:4.0.2-6.module_el8.6.0+2878+e681bc44
- (no CPE)range: < 2:4.0.2-6.module_el8.6.0+2878+e681bc44
- (no CPE)range: < 2:4.0.2-6.module_el8.6.0+2878+e681bc44
- (no CPE)range: < 2:4.0.2-6.module_el8.6.0+2878+e681bc44
- (no CPE)range: < 3.15-3.module_el8.6.0+2877+8e437bf5
- (no CPE)range: < 4.0.0-1.module_el8.6.0+2877+8e437bf5
- (no CPE)range: < 1:1.0.3-2.module_el8.6.0+2878+e681bc44
- (no CPE)range: < 2:1.6.1-2.module_el8.6.0+2877+8e437bf5
- (no CPE)range: < 2:1.6.1-2.module_el8.6.0+2877+8e437bf5
- (no CPE)range: < 1.1.8-2.module_el8.6.0+2877+8e437bf5
- (no CPE)range: < 0.0.99.3-0.4.module_el8.6.0+2877+8e437bf5
- (no CPE)range: < 0.0.99.3-0.4.module_el8.6.0+2877+8e437bf5
- (no CPE)range: < 0.2.6-2.module_el8.6.0+2877+8e437bf5
- (no CPE)range: < 0.9.3-150300.3.6.1
- (no CPE)range: < 0.23.0-150100.4.7.1
- (no CPE)range: < 0.23.0-150100.4.7.1
- (no CPE)range: < 1.3.0-150100.3.12.1
- (no CPE)range: < 1.3.0-150100.3.12.1
- (no CPE)range: < 2.32.1-150100.4.9.2
- (no CPE)range: < 2.32.1-150100.4.9.2
- (no CPE)range: < 3.4.7-150300.9.9.2
- (no CPE)range: < 3.4.7-150400.4.3.1
- (no CPE)range: < 3.4.7-150300.9.9.2
- (no CPE)range: < 0.9.3-150300.3.6.1
- (no CPE)range: < 0.9.3-150300.3.6.1
- (no CPE)range: < 0.9.3-150300.3.6.1
- (no CPE)range: < 0.9.3-150300.3.6.1
- (no CPE)range: < 1.6-4.9.2
- (no CPE)range: < 0.11.0-1.13.1
- (no CPE)range: < 1.0.0-4.12.4
- (no CPE)range: < 0.7.0-150200.2.6.2
- (no CPE)range: < 0.7.0-150200.2.6.2
- (no CPE)range: < 0.23.0-150100.4.7.1
- (no CPE)range: < 0.23.0-1.12.3
- (no CPE)range: < 0.26.0-4.12.4
- (no CPE)range: < 0.23.0-150100.4.7.1
- (no CPE)range: < 0.23.0-150100.4.7.1
- (no CPE)range: < 0.23.0-150100.4.7.1
- (no CPE)range: < 0.23.0-150100.4.7.1
- (no CPE)range: < 1.3.0-1.15.3
- (no CPE)range: < 1.3.0-150100.3.12.1
- (no CPE)range: < 1.3.0-150100.3.12.1
- (no CPE)range: < 1.3.0-150100.3.12.1
- (no CPE)range: < 1.3.0-150100.3.12.1
- (no CPE)range: < 1.3.0-150100.3.12.1
- (no CPE)range: < 1.3.0-150100.3.12.1
- (no CPE)range: < 1.3.0-150000.3.12.1
- (no CPE)range: < 1.3.0-150000.3.12.1
- (no CPE)range: < 1.3.0-150100.3.12.1
- (no CPE)range: < 1.3.0-150100.3.12.1
- (no CPE)range: < 1.3.0-1.15.3
- (no CPE)range: < 1.3.0-1.15.3
- (no CPE)range: < 1.3.0-1.15.3
- (no CPE)range: < 1.3.0-1.15.3
- (no CPE)range: < 1.3.0-150100.3.12.1
- (no CPE)range: < 1.3.0-150100.3.12.1
- (no CPE)range: < 1.3.0-150100.3.12.1
- (no CPE)range: < 1.3.0-150100.3.12.1
- (no CPE)range: < 1.3.0-150000.3.12.1
- (no CPE)range: < 1.3.0-1.15.3
- (no CPE)range: < 1.3.0-1.15.3
- (no CPE)range: < 1.3.0-1.15.3
- (no CPE)range: < 1.3.0-150000.3.12.1
- (no CPE)range: < 1.3.0-150100.3.12.1
- (no CPE)range: < 1.3.0-150100.3.12.1
- (no CPE)range: < 1.3.0-1.15.3
- (no CPE)range: < 1.5.0-4.15.4
- (no CPE)range: < 1.3.0-150100.3.12.1
- (no CPE)range: < 1.3.0-150200.3.9.3
- (no CPE)range: < 1.3.0-150100.3.12.1
- (no CPE)range: < 1.3.0-150100.3.12.1
- (no CPE)range: < 1.3.0-150200.3.9.3
- (no CPE)range: < 1.3.0-1.15.3
- (no CPE)range: < 1.3.0-1.15.3
- (no CPE)range: < 1.3.0-1.15.3
- (no CPE)range: < 1.3.0-1.15.3
- (no CPE)range: < 2.32.1-150100.4.9.2
- (no CPE)range: < 2.32.1-1.38.1
- (no CPE)range: < 2.45.0-4.33.3
- (no CPE)range: < 2.32.1-150000.3.41.2
- (no CPE)range: < 2.32.1-150100.4.9.2
- (no CPE)range: < 2.32.1-150100.4.9.2
- (no CPE)range: < 0.14.0-4.12.2
- (no CPE)range: < 0.4.0-1.6.1
- (no CPE)range: < 0.4.0-4.6.2
- (no CPE)range: < 0.4.0-150200.6.12.2
- (no CPE)range: < 0.4.0-150200.6.12.2
- (no CPE)range: < 8.3.5-1.30.3
- (no CPE)range: < 9.5.8-4.21.2
- (no CPE)range: < 0.1.1661440542.6cbe0da-1.29.1
- (no CPE)range: < 0.1.1687520761.cefb248-4.15.2
- (no CPE)range: < 4.3.6-1.27.4
- (no CPE)range: < 4.3.3-1.18.1
- (no CPE)range: < 4.3.4-1.32.3
- (no CPE)range: < 4.3.6-1.39.4
- (no CPE)range: < 4.3.4-1.21.4
- (no CPE)range: < 5.0.1-4.21.4
- (no CPE)range: < 4.3.5-1.29.3
- (no CPE)range: < 4.1-150200.6.12.2
- (no CPE)range: < 4.1-150200.6.12.2
- (no CPE)range: < 3.4.7-150300.9.9.2
- (no CPE)range: < 3.4.7-150300.9.9.2
- (no CPE)range: < 3.4.7-150300.9.9.2
- (no CPE)range: < 3.4.7-150300.9.9.2
- (no CPE)range: < 3.4.7-150400.4.3.1
- (no CPE)range: < 42.2.10-150200.3.8.2
- (no CPE)range: < 0.19.0-1.8.2
- (no CPE)range: < 0.24.0-3.6.3
- (no CPE)range: < 0.9.5-150200.3.31.2
- (no CPE)range: < 0.3.7-150200.3.21.2
- (no CPE)range: < 0.10.0-1.8.2
- (no CPE)range: < 0.10.1-3.6.4
- (no CPE)range: < 3000.3-150200.6.24.2
- (no CPE)range: < 2.3.5-12.9.1
- (no CPE)range: < 2.3.5-15.12.2
- (no CPE)range: < 4.3.4-21.43.3
- (no CPE)range: < 5.0.1-24.30.3
- (no CPE)range: < 4.3.11-38.103.3
- (no CPE)range: < 5.0.1-41.42.3
- (no CPE)range: < 4.1.18-150200.4.39.3
- (no CPE)range: < 4.1.18-150200.4.39.3
- (no CPE)range: < 4.1.31-150200.4.50.4
- (no CPE)range: < 4.1.31-150200.4.50.4
- (no CPE)range: < 4.3.9-52.71.3
- (no CPE)range: < 4.1.46-150200.3.71.5
- (no CPE)range: < 4.3.5-24.33.3
- (no CPE)range: < 4.3.5-19.27.1
- (no CPE)range: < 4.3.3-24.24.3
- (no CPE)range: < 4.1.11-150200.3.18.2
- (no CPE)range: < 4.1.20-150200.3.30.2
- (no CPE)range: < 4.1.34-150200.3.47.6
- (no CPE)range: < 4.1.34-150200.3.47.6
- (no CPE)range: < 0.28-150200.3.15.2
- (no CPE)range: < 1.2.0-6.16.1
- (no CPE)range: < 1.2.2-9.9.2
- (no CPE)range: < 4.3.2-6.24.1
- (no CPE)range: < 5.0.1-9.15.2
- (no CPE)range: < 4.1.36-150200.3.52.1
- (no CPE)range: < 4.1-150200.11.55.4
- (no CPE)range: < 4.1-150200.11.55.2
- (no CPE)range: < 4.1.26-150200.3.45.4
- (no CPE)range: < 4.1.36-150200.3.64.2
- (no CPE)range: < 4.3.3-25.27.3
- (no CPE)range: < 1.0.0-3.7.2
- (no CPE)range: < 1.0.0-3.7.2
- (no CPE)range: < 4.3.4-1.21.3
- (no CPE)range: < 5.0.1-3.33.3
prometheus/client_golangv5
Range: < 1.11.1

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

News mentions

No linked articles in our index yet.

cvss	0.455
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000