GHSA-FW8G-CG8F-9J28
CVE Details
Visit the official vulnerability details page for GHSA-FW8G-CG8F-9J28 to learn more.
Initial Publication
05/05/2026
Last Update
05/05/2026
Third Party Dependency
github.com/prometheus/prometheus
NIST CVE Summary
Prometheus vulnerable to stored XSS via crafted histogram bucket label values in the old web UI heatmap display
CVE Severity
Our Official Summary
Investigation is ongoing to determine how this vulnerability affects our products.
Status
fixed
Affected Products & Versions
| Version | PaletteAI | PaletteAI VerteX |
|---|---|---|
| 1.0.7 | ⚠️ Impacted | ⚠️ Impacted |
Revision History
No revisions available.