Vulnerability in Ctfer-io Monitoring

CVE-2026-32720

The CTFer.io Monitoring component is in charge of the collection, process and storage of various signals (i.e. logs, metrics and distributed traces). Prior to 0.2.1, due to a mis-written NetworkPolicy, a malicious actor can pivot from a co…

EPSS: 0.001 (19.3th percentile) — read the EPSS interpretation.

Affected products

Ctfer-io Monitoring — versions < 0.2.1

Weakness classification (CWE)

CWE-284 — Improper Access Control

References

https://github.com/ctfer-io/monitoring/security/advisories/GHSA-7x23-j8gv-v54x (x_refsource_CONFIRM)