Telegraf - 1 CVEs (Page 1/1)

About “Telegraf”

A curated feed of “Telegraf”-related CVEs appears below. We currently track 1 CVEs for this tag (all time). In the last 365 days, 0 were published. Average CVSS is 9.8 (all time), and 100% are rated High/Critical (all time). Top CWEs (all time): CWE-306 - Missing Authentication for Critical Function.

In our taxonomy this topic maps to a LOW impact class. Logging and monitoring stacks may expose dashboards or collectors. Patch services, enforce auth and TLS, restrict admin endpoints, rotate tokens, and review data retention. Use the filters below to sort by CVSS, risk and CWE. Each detail page highlights vendor advisories and mitigation tips.

Support & lifecycle: telegraf

This table shows recent release cycles and their projected end-of-life. Data source: endoflife.date.

Cycle	Release	Latest	EOL
1.38	2026-03-09	1.38.4	-
1.37	2025-12-08	1.37.3	-
1.36	2025-09-08	1.36.4	2026-03-09 Expired
1.35	2025-06-16	1.35.4	2025-12-08 Expired
1.34	2025-03-10	1.34.4	2025-09-08 Expired
1.33	2024-12-09	1.33.3	2025-06-16 Expired
1.32	2024-09-09	1.32.3	2025-03-10 Expired
1.31	2024-06-10	1.31.3	2024-12-09 Expired
1.30	2024-03-11	1.30.3	2024-09-09 Expired
1.29	2023-12-11	1.29.5	2024-06-10 Expired
1.28	2023-09-11	1.28.5	2024-03-11 Expired
1.27	2023-06-12	1.27.4	2023-12-11 Expired
1.26	2023-03-13	1.26.3	2023-09-11 Expired
1.25	2022-12-12	1.25.3	2023-06-12 Expired
1.24	2022-09-12	1.24.4	2023-03-13 Expired
1.23	2022-06-13	1.23.4	2022-12-12 Expired
1.22	2022-03-23	1.22.4	2022-09-12 Expired
1.21	2021-12-15	1.21.4	2022-06-13 Expired
1.20	2021-09-17	1.20.4	2022-03-23 Expired
1.19	2021-06-17	1.19.3	2021-12-15 Expired
1.18	2021-03-17	1.18.3	2021-09-17 Expired
1.17	2020-12-18	1.17.3	2021-06-17 Expired
1.16	2020-10-21	1.16.3	2021-03-17 Expired
1.15	2020-07-22	1.15.4	2020-12-18 Expired
1.14	2020-03-26	1.14.5	2020-10-21 Expired
1.13	2019-12-12	1.13.4	2020-07-22 Expired
1.12	2019-09-03	1.12.6	2020-03-26 Expired
1.11	2019-06-11	1.11.5	2019-12-12 Expired
1.10	2019-03-05	1.10.4	2019-09-03 Expired
1.9	2018-11-20	1.9.5	2019-06-11 Expired
1.8	2018-09-21	1.8.3	2019-03-05 Expired
1.7	2018-06-12	1.7.4	2018-11-20 Expired
1.6	2018-04-16	1.6.4	2018-09-21 Expired
1.5	2017-12-14	1.5.3	2018-06-12 Expired
1.4	2017-09-05	1.4.5	2018-04-16 Expired
1.3	2017-05-15	1.3.5	2017-12-14 Expired
1.2	2017-01-23	1.2.1	2017-09-05 Expired
1.1	2016-11-08	1.1.2	2017-05-15 Expired
1.0	2016-09-02	1.0.1	2017-01-23 Expired

Maintained Soon (≤ 180 days) Expired

Subscribe lifecycle: RSS · RSS (expired) · ICS

Subscribe CVEs: RSS for “Telegraf” · RSS (High+Critical only)

2020-12-17

Critical

CVE-2020-35187

The official telegraf docker images before 1.9.4-alpine (Alpine specific) contain a blank password for a root user. System using the telegraf docker container deployed by affected versions of the doc…

CVSS: 9.8 CWE: CWE-306 - Missing Authentication for Critical Function View on NVD