1.10.1 Security release
1.10 Security release (2020-04-27)
1.9.3 Security release (2020-04-22)
1.8.9 / 1.9.2 Security Release (2020-03-25)
1.8.8 / 1.9.1 Security Release (2020-03-24)
1.6.7 Security Release (2019-11-04)
1.5.6 Security Release (2019-04-04)
1.5.2 Security Release (2019-03-25)
Demo Site Vulnerability (2018-12-20)
Jenkins Vulnerability (2017-05-14)

1.5.2 Security Release (2019-03-25)

March 25, 2020 17:10
Updated

Status: Fixed in 1.5.2

We were made aware of a vulnerability in the authentication for the audit-log repo allowing users to access data for other users when querying using the /query API.

This is a serious bug that could potentially have leaked information about our customers; we were, however, able to verify that no customers on our cloud services were affected by this bug.

Comments

0 comments

Article is closed for comments.

Articles in this section

Related articles