Primary

Context

Chronosphere Chronocollector Information Disclosure Vulnerability

Vulnerability

A vulnerability allowing information disclosure exists in Chronosphere Chronocollector versions prior to 0.116.0. This vulnerability enables an unauthenticated attacker with network access to the collector service to access sensitive information.

Impact

Exploitation of this vulnerability allows for unauthorized retrieval of sensitive system information.

Remediation

Users are advised to upgrade to Chronosphere Chronocollector version 0.116.0 or later.

Added: May 13, 2026, 7:43 PM

Updated: May 13, 2026, 7:43 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

4.9

remediation

0.0

relevance

8.2

threat

0.0

urgency

5.7

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

4.9

remediation

0.0

relevance

8.2

threat

0.0

urgency

5.7

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Chronosphere Chronocollector Information Disclosure Vulnerability

Vulnerability

Impact

Remediation

Affected Products

Palo Alto Networks Chronosphere Chronocollector

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating