v3.5.2
📦 prometheusView on GitHub →
🐛 1 fixes🔧 1 symbols
Summary
This release addresses a critical Stored XSS vulnerability in the Prometheus web UI and includes a performance improvement by stopping unnecessary calls to Simplify in Regex processing.
🐛 Bug Fixes
- Fixed a Stored XSS vulnerability triggered via unescaped metric names and label values in Prometheus web UI tooltips and metrics explorer (CVE-2026-40179).