Aggregates CVE and security vulnerability intelligence across all statping-ng-related products, including CVSS, EPSS, publication dates, and vulnerability intelligence data.
Common weakness patterns include vendor risk path handling, with potential vendor impact file overwrite across vendor surface production workloads and vendor surface software deployment use cases.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2024-26480 | An issue in Statping-ng v.0.91.0 allows an attacker to obtain sensitive information via a crafted request to the admin parameter. | [email protected] | 7.5 | 0.55% | 2026-02-11 | 2026-02-28 |
| CVE-2024-26479 | An issue in Statping-ng v.0.91.0 allows an attacker to obtain sensitive information via a crafted request to the Command execution function. | [email protected] | 5.3 | 0.53% | 2026-02-11 | 2026-02-26 |
| CVE-2024-26478 | An issue in Statping-ng v.0.91.0 allows an attacker to obtain sensitive information via a crafted request to the /api/users endpoint. | [email protected] | 5.3 | 0.39% | 2026-02-11 | 2026-02-26 |
| CVE-2024-26477 | An issue in Statping-ng v.0.91.0 allows an attacker to obtain sensitive information via a crafted request to the api parameter of the oauth, amazon_sns, export endpoints. | [email protected] | 7.5 | 0.49% | 2026-02-11 | 2026-02-26 |