Vulnerabilities in openobserve
8 resultsCVE-2024-24830CRITICALOpenObserve Privilege Escalation Vulnerability in Users APIEPSS 0.7%CVE-2024-41808HIGHOpenObserve stored XSS vulnerability may lead to complete account takeoverEPSS 0.6%CVE-2024-55954HIGHOpenObserve Improper Authorization Allows Admin User to Remove Root UserEPSS 0.5%CVE-2024-25106CRITICALOpenObserve Unauthorized Access Vulnerability in Users APIEPSS 0.5%CVE-2024-41809HIGHOpenObserve Cross-site Scripting (XSS) vulnerability in `openobserve/web/src/views/MemberSubscription.vue`EPSS 0.4%CVE-2026-39361HIGHOpenObserve has a SSRF Protection Bypass via IPv6 Bracket Notation in validate_enrichment_urlEPSS 0.3%CVE-2025-66223HIGHOpenObserve's Invite Token Lifecycle MisconfigurationEPSS 0.3%CVE-2025-64744LOWOpenObserve Vulnerable to HTML Injection in Organization Invitation EmailsEPSS 0.2%