Approved changes feed: RSS · Atom

cpe:2.3:a:influxdata:telegraf:*:*:*:*:*:*:*:*

part: a version: * update: *

VendorInfluxdata (aff7ddef-c604-5aee-b4b1-637df20874fe)
ProductTelegraf (20c3285e-1e9d-551a-b8e1-783766520890)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from purl2cpe mapping

PURL mappings

PURLSourceLast updated
pkg:github/influxdata/telegraf purl2cpe 2026-06-01 10:12:07.429407
pkg:golang/github.com/influxdata/telegraf purl2cpe 2026-06-01 10:12:07.429408
pkg:rpm/opensuse/telegraf purl2cpe 2026-06-01 10:12:07.429410
pkg:sourceforge/telegraf.mirror purl2cpe 2026-06-01 10:12:07.429411

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2020-35187 vulnerable 2026-06-08 05:25:00.903519 Details available
The official telegraf docker images before 1.9.4-alpine (Alpine specific) contain a blank password for a root user. System using the telegraf docker container deployed by affected versions of the docker image may allow a remote attacker to achieve root access with a blank password.
Published: 2020-12-17T00:58:19.000Z
Updated: 2024-08-04T17:02:06.895Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.