Maven package
org.graylog/graylog-parent
pkg:maven/org.graylog/graylog-parent
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2024-52506 | — | >= 6.1.0, < 6.1.2 | 6.1.2 | Nov 18, 2024 | Graylog is a free and open log management platform. The reporting functionality in Graylog allows the creation and scheduling of reports which contain dashboard widgets displaying individual log messages or metrics aggregated from fields of multiple log messages. This functionali | ||
| CVE-2020-15813 | — | < 3.3.3 | 3.3.3 | Jul 17, 2020 | Graylog before 3.3.3 lacks SSL Certificate Validation for LDAP servers. It allows use of an external user/group database stored in LDAP. The connection configuration allows the usage of unencrypted, SSL- or TLS-secured connections. Unfortunately, the Graylog client code (in all v |
- CVE-2024-52506Nov 18, 2024affected >= 6.1.0, < 6.1.2fixed 6.1.2
Graylog is a free and open log management platform. The reporting functionality in Graylog allows the creation and scheduling of reports which contain dashboard widgets displaying individual log messages or metrics aggregated from fields of multiple log messages. This functionali
- CVE-2020-15813Jul 17, 2020affected < 3.3.3fixed 3.3.3
Graylog before 3.3.3 lacks SSL Certificate Validation for LDAP servers. It allows use of an external user/group database stored in LDAP. The connection configuration allows the usage of unencrypted, SSL- or TLS-secured connections. Unfortunately, the Graylog client code (in all v