CVE-2023-26735 Information

Description

blackbox_exporter v0.23.0 was discovered to contain an access control issue in its probe interface. This vulnerability allows attackers to detect intranet ports and services as well as download resources.

Reference

http://blackboxexporter.com https://github.com/prometheus/blackbox_exporter/issues/1025 https://github.com/prometheus/blackbox_exporter/issues/1024 http://prometheus.com https://github.com/prometheus/blackbox_exporter/issues/1026