Description
An information disclosure vulnerability in the Chronosphere Chronocollector enables an unauthenticated attacker with network access to the collector service to retrieve sensitive information.
Published: 2026-05-13
Score: 4.9 Medium
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

An information disclosure flaw in Chronosphere Chronocollector allows an unauthenticated attacker with network access to retrieve sensitive data. This vulnerability, classified as CWE‑497, permits direct exposure of confidential information without any credentials, potentially compromising confidentiality.

Affected Systems

Palo Alto Networks Chronosphere Chronocollector is affected. All instances running before the recommended release of version 0.116.0 carry the vulnerability; versions 0.116.0 and later have the fix applied.

Risk and Exploitability

The CVSS score of 4.9 indicates a low‑to‑moderate severity for information disclosure. EPSS data is unavailable, but the vulnerability is not listed in CISA KEV, suggesting limited exploitation activity. The attack vector is network‑based and requires no authentication, meaning any host that can reach the collector service is a potential target. Exploitation is straightforward: an attacker simply accesses the service endpoints and extracts the exposed data.

Generated by OpenCVE AI on May 13, 2026 at 20:05 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade Chronosphere Chronocollector to version 0.116.0 or later to eliminate the vulnerability.
  • Restrict network access to the collector service through firewalls or VPN to reduce exposure.
  • Implement additional access controls or authentication mechanisms if possible to limit exposure to authorized users.

Generated by OpenCVE AI on May 13, 2026 at 20:05 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Wed, 13 May 2026 18:30:00 +0000

Type Values Removed Values Added
Description An information disclosure vulnerability in the Chronosphere Chronocollector enables an unauthenticated attacker with network access to the collector service to retrieve sensitive information.
Title Chronosphere Chronocollector Information Disclosure Vulnerability
First Time appeared Palo Alto Networks
Palo Alto Networks chronosphere Chronocollector
Weaknesses CWE-497
CPEs cpe:2.3:a:palo_alto_networks:chronosphere_chronocollector:*:*:*:*:*:*:*:*
Vendors & Products Palo Alto Networks
Palo Alto Networks chronosphere Chronocollector
References
Metrics cvssV4_0

{'score': 4.9, 'vector': 'CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/AU:N/R:U/V:C/RE:M/U:Amber'}

Subscriptions

Palo Alto Networks Chronosphere Chronocollector
cve-icon MITRE

Status: PUBLISHED

Assigner: palo_alto

Published:

Updated: 2026-05-13T18:42:18.103Z

Reserved: 2025-11-03T20:43:59.870Z

Link: CVE-2026-0239

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Awaiting Analysis

Published: 2026-05-13T19:16:57.573

Modified: 2026-05-14T16:21:23.190

Link: CVE-2026-0239

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-05-13T21:15:04Z

Weaknesses