Name: Openobserve
Author: Openobserve

🔍 What is Openobserve?

Description coming soon...

🛡️ Security Overview

Click on a severity to filter vulnerabilities

⚠️ Known Vulnerabilities

CVE-2024-24830

CRITICAL CVSS 9.9 Feb 8, 2024

This vulnerability allows any authenticated regular user in OpenObserve to create new users with administrative 'root' privileges, bypassing intended role-based access controls. It leads to unauthoriz...

CVE-2024-41809

HIGH CVSS 7.2 Jul 25, 2024

OpenObserve versions 0.4.4 through 0.9.x contain a cross-site scripting (XSS) vulnerability in the MemberSubscription.vue component. This allows attackers to inject malicious scripts that execute in u...

CVE-2024-41808

HIGH CVSS 8.8 Jul 25, 2024

CVE-2024-41808 is a cross-site scripting (XSS) vulnerability in OpenObserve's dashboard filter selection menu that allows complete account takeover. All OpenObserve users through version 0.9.1 are aff...