Lucene search

CVE-2023-2183

🗓️ 06 Jun 2023 19:00:15Reported by Alpine Linux Development TeamType

alpinelinux🔗 security.alpinelinux.org👁 22 Views

Grafana platform allows Viewer role to send test alerts through API without proper access validation, posing risk of abuse and spamming

Reporter	Title	Published	Views	Family All 32
IBM Security Bulletins	Security Bulletin: IBM Storage Ceph is vulnerable to Missing Authorization in Grafana (CVE-2023-2183)	18 Jan 202421:15	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Storage Ceph is vulnerable to Missing Authorization in Grafana (CVE-2023-2183)	26 Jan 202422:00	–	ibm
IBM Security Bulletins	Security Bulletin: IBM InfoSphere Information Server is affected by multiple vulnerabilities in Grafana	29 Nov 202305:02	–	ibm
OSV	CVE-2023-2183	6 Jun 202319:15	–	osv
OSV	Grafana Improper Access Control vulnerability	6 Jun 202321:30	–	osv
OSV	CGA-C9VV-QXXR-Q267	6 Jun 202412:25	–	osv
OSV	Grafana has Broken Access Control in Alert manager: Viewer can send test alerts	12 Jun 202320:09	–	osv
OSV	BIT-grafana-2023-2183	6 Mar 202410:53	–	osv
OSV	RHSA-2023:7740 Red Hat Security Advisory: Red Hat Ceph Storage 6.1 security, enhancements, and bug fix update	18 Sep 202405:45	–	osv
OSV	OPENSUSE-SU-2024:13027-1 grafana-10.0.1-2.1 on GA media	15 Jun 202400:00	–	osv

OS	OS Version	Architecture	Package	Package Version	Filename
Alpine	3.18-community	noarch	grafana	9.5.2-r4	UNKNOWN

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

06 Jun 2023 19:15Current

6.9Medium risk

Vulners AI Score6.9

CVSS36.4

EPSS0.00621