28,679 Entries 2,229 Sources 5 Verticals Last sync 15 minutes Live
Dashboard/ OS & platform/ Prometheus
OS & platform

Prometheus

Prometheus
Repository
v3.12.0 bewährt latest release
28.05.2026

bewährt — keine offenen Regressionen, etabliert · 0 open bugs, 0 Regressions

Upgrade assessment

Sicherheitsrelevant

Zeitnah aktualisieren

6 CVE(s) zuletzt, höchste Schwere: hoch

Derived automatically from release, repo and CVE data — no judgment by a language model.

Specsattributes
health{'open_bugs': 0, 'checked_at': '2026-06-08T02:01:08.690186', 'open_regressions': 0}
gh_etagW/"312708723b1a072d0c83ab6441dc17be75a8c8fe4facd3b6abbc40f335d60862"
eol_productprometheus
gh_checked_at2026-06-08T02:45:00.099448+00:00
Timelinealle Einträge
Type Ereignis · Quelle Value · Time
CVE
OS & platform Medium

Prometheus monitoring software contains a vulnerability that allows attackers to redirect users to arbitrary external websites through specially crafted URLs, which could be exploited for phishing attacks.

Source
CVE-2021-29622
06.06.2026
CVE
OS & platform High

A vulnerability in Prometheus allows attackers to bypass authentication if they have access to hashed passwords by manipulating the internal cache used for password verification.

Source
CVE-2022-46146
06.06.2026
CVE
OS & platform Medium

A security vulnerability in the Prometheus web interface allows attackers to inject malicious JavaScript code through crafted metric names, which then executes in users' browsers when they hover over charts or browse metrics.

Source
CVE-2026-40179
06.06.2026
CVE
OS & platform High

A vulnerability in Prometheus exposes Azure AD OAuth secrets in plaintext through an HTTP API when users can access the configuration endpoint.

Source
CVE-2026-42151
06.06.2026
CVE
OS & platform High

A vulnerability in Prometheus allows attackers to cause excessive memory allocation and crash the service by sending crafted requests to the remote read endpoint.

Source
CVE-2026-42154
06.06.2026
CVE
OS & platform Medium

A security vulnerability in Prometheus allows attackers to inject malicious JavaScript code into the legacy web interface when they can inject crafted metrics, potentially enabling data theft or server shutdown.

Source
CVE-2026-44903
06.06.2026
EOL
OS & platform

EOL 2026-07-09

Source
3.12
28.05.2026
REL
OS & platform High bewährt

Prometheus v3.12.0 fixes two security vulnerabilities (DoS in remote-write and secret leak in STACKIT SD), introduces experimental PromQL functions and improves TSDB performance

Source
v3.12.0
28.05.2026
REL
OS & platform High bewährt

Prometheus v3.12.0-rc.0 fixes two security vulnerabilities (DoS in remote-write and secret leak in STACKIT SD), introduces experimental PromQL functions and improves TSDB performance

Source
v3.12.0-rc.0
19.05.2026
REL
OS & platform High bewährt

Security update fixes multiple vulnerabilities including OAuth secrets exposure, snappy decompression issues and XSS attacks

Source
v3.5.3
27.04.2026
REL
OS & platform High bewährt

Security update fixes three vulnerabilities: OAuth secrets in plaintext, snappy decompression issues, and XSS in the old user interface

Source
v3.11.3
27.04.2026
REL
OS & platform High bewährt

Security update fixes Stored XSS vulnerability in web UI and improves regex performance

Source
v3.5.2
13.04.2026
REL
OS & platform High bewährt

Security update fixes Stored XSS vulnerability in web UI and adds Consul Service Discovery improvements

Source
v3.11.2
13.04.2026
REL
OS & platform Medium bewährt

Fixes startup failure when using OTLP HTTP tracing with insecure connection

Source
v3.11.1
07.04.2026
EOL
OS & platform

EOL 2026-05-14

Source
3.11
02.04.2026
REL
OS & platform Medium bewährt

Prometheus v3.11.0 introduces new AWS service discovery roles, experimental histogram features and PromQL operators, fixes critical bugs in alerting and TSDB, and deprecates some Hetzner SD labels

Source
v3.11.0
02.04.2026
REL
OS & platform Medium bewährt

Prometheus v3.11.0-rc.0 introduces new AWS service discovery roles, experimental histogram features and PromQL operators, fixes critical bugs in alerting and TSDB, and deprecates some Hetzner SD labels

Source
v3.11.0-rc.0
30.03.2026
REL
OS & platform Low bewährt

Prometheus 3.10.0 introduces distroless Docker images, adds PromQL fill() functions and OpenAPI specification, fixes multiple bugs and improves performance

Source
v3.10.0
26.02.2026
EOL
OS & platform

EOL 2026-04-08

Source
3.10
25.02.2026
REL
OS & platform Low bewährt

Prometheus 3.10.0-rc.1 introduces distroless Docker images, adds PromQL fill() functions and OpenAPI specification, and fixes various bugs in PromQL and TSDB

Source
v3.10.0-rc.1
20.02.2026
REL
OS & platform bewährt

Maintenance release without code changes featuring updated dependencies for Docker library and Go version

Source
v3.5.1
22.01.2026
REL
OS & platform Medium Breaking

Native Histograms are no longer experimental, feature flag removed and replaced with configuration option

Source
v3.9.0
07.01.2026
REL
OS & platform Medium bewährt

Fixes critical bugs in agent startup crashes and scraping relabel functionality

Source
v3.9.1
07.01.2026
EOL
OS & platform

EOL 2026-02-17

Source
3.9
06.01.2026
REL
OS & platform Medium Breaking

Native Histograms are no longer experimental, feature flag removed and replaced with configuration option

Source
v3.9.0-rc.0
23.12.2025
REL
OS & platform Medium bewährt

Fixes incorrect response headers in Remote Write receiver that caused false partial error logs and metrics in Prometheus senders

Source
v3.8.1
16.12.2025
REL
OS & platform Medium Breaking

Native Histograms introduced as stable feature but require explicit activation via scrape_native_histograms configuration with changes to feature flag behavior

Source
v3.8.0
02.12.2025
EOL
OS & platform

EOL 2026-01-09

Source
3.8
28.11.2025
REL
OS & platform Medium Breaking

Remote-write 2 specification updated to version 2.0-rc.4 with renaming of 'created timestamp' to 'start timestamp' and added OAuth2 JWT-Bearer grant-type support

Source
v3.8.0-rc.1
24.11.2025
REL
OS & platform Medium Breaking

Native Histograms introduced as stable feature but require explicit activation via scrape_native_histogram configuration setting

Source
v3.8.0-rc.0
19.11.2025
REL
OS & platform Medium bewährt

Bugfixes for UI redirect behavior, native histogram federation, promtool configuration checking, and remote-write deadlock

Source
v3.7.3
30.10.2025
REL
OS & platform Low bewährt

Bug fixes for AWS Service Discovery credentials handling, relabeling validation, and PromQL parsing with special metric and label names

Source
v3.7.2
22.10.2025
REL
OS & platform Medium bewährt

Fixed OTLP label translation for OTel attribute names with underscores, reverting breaking changes introduced in version 3.7.0

Source
v3.7.1
17.10.2025
EOL
OS & platform

EOL 2025-11-26

Source
3.7
15.10.2025
REL
OS & platform High Breaking

Prometheus 3.7.0 contains a critical bug in the OTLP endpoint that breaks translation of OpenTelemetry attribute names starting with underscore

Source
v3.7.0
15.10.2025
REL
OS & platform Medium Breaking

Prometheus v3.7.0-rc.0 introduces experimental PromQL functions, improves native histogram support and deprecates several remote-write metrics

Source
v3.7.0-rc.0
08.10.2025
REL
OS & platform Medium bewährt

Prometheus v3.6.0 adds new PromQL functions, TSDB block metadata API and template functions, improves OTLP support and fixes several bugs including memory corruption and panics

Source
v3.6.0
22.09.2025
EOL
OS & platform

EOL 2025-11-02

Source
3.6
17.09.2025
REL
OS & platform Low bewährt

Added new metric prometheus_tsdb_head_stale_series to track stale time series in the Head block

Source
v3.6.0-rc.1
11.09.2025
REL
OS & platform Low bewährt

Prometheus v3.6.0-rc.0 adds new PromQL functions, API endpoints and OTLP enhancements along with various bugfixes for PromQL, TSDB and Discovery

Source
v3.6.0-rc.0
23.08.2025
EOL
OS & platform

EOL 2026-07-31

Source
3.5
14.07.2025
REL
OS & platform Low bewährt

Prometheus v3.5.0 LTS release with new experimental PromQL functions, STACKIT Cloud service discovery, performance improvements and various bugfixes

Source
v3.5.0
14.07.2025
REL
OS & platform Low bewährt

Prometheus v3.5.0-rc.1 introduces new experimental PromQL functions, STACKIT Cloud service discovery, and various performance improvements

Source
v3.5.0-rc.1
11.07.2025
REL
OS & platform Low bewährt

Prometheus 3.5.0-rc.0 release candidate with new experimental PromQL functions, OTLP improvements, STACKIT Cloud service discovery and various performance optimizations

Source
v3.5.0-rc.0
30.06.2025
EOL
OS & platform

EOL 2025-06-28

Source
3.4
17.05.2025
EOL
OS & platform

EOL 2025-05-27

Source
3.3
15.04.2025
EOL
OS & platform

EOL 2025-03-31

Source
3.2
17.02.2025
EOL
OS & platform

EOL 2025-02-13

Source
3.1
02.01.2025
EOL
OS & platform

EOL 2024-12-26

Source
3.0
14.11.2024
EOL
OS & platform

EOL 2024-12-03

Source
2.55
22.10.2024
EOL
OS & platform

EOL 2024-09-20

Source
2.54
09.08.2024
EOL
OS & platform

EOL 2025-07-31

Source
2.53
16.06.2024
EOL
OS & platform

EOL 2024-06-19

Source
2.52
08.05.2024
EOL
OS & platform

EOL 2024-04-30

Source
2.51
19.03.2024
EOL
OS & platform

EOL 2024-04-04

Source
2.50
22.02.2024
EOL
OS & platform

EOL 2024-02-26

Source
2.49
15.01.2024
EOL
OS & platform

EOL 2023-12-28

Source
2.48
15.11.2023
EOL
OS & platform

EOL 2023-10-18

Source
2.47
06.09.2023
EOL
OS & platform

EOL 2023-09-05

Source
2.46
25.07.2023
EOL
OS & platform

EOL 2024-07-31

Source
2.45
23.06.2023
EOL
OS & platform

EOL 2023-08-06

Source
2.44
14.05.2023
EOL
OS & platform

EOL 2023-05-02

Source
2.43
21.03.2023
EOL
OS & platform

EOL 2023-03-14

Source
2.42
31.01.2023
EOL
OS & platform

EOL 2023-01-31

Source
2.41
20.12.2022
EOL
OS & platform

EOL 2022-12-19

Source
2.40
07.11.2022
EOL
OS & platform

EOL 2022-11-16

Source
2.39
05.10.2022
EOL
OS & platform

EOL 2022-09-27

Source
2.38
16.08.2022
EOL
OS & platform

EOL 2023-07-31

Source
2.37
14.07.2022
EOL
OS & platform

EOL 2022-07-11

Source
2.36
30.05.2022