CVE-2026-44903 | Prometheus up to 3.5.2/3.11.2 cross site scripting (GHSA-fw8g-cg8f-9j28)

May 27, 2026 Yanac

A vulnerability was found in Prometheus up to 3.5.2/3.11.2. It has been classified as problematic. The impacted element is an unknown function. The manipulation leads to cross site scripting.

This vulnerability is uniquely identified as CVE-2026-44903. The attack is possible to be carried out remotely. No exploit exists.

Upgrading the affected component is recommended.VulDB Recent EntriesRead More