Lucene search

K
cvelistMitreCVELIST:CVE-2018-15727
HistoryAug 29, 2018 - 3:00 p.m.

CVE-2018-15727

2018-08-2915:00:00
mitre
www.cve.org

7.9 High

AI Score

Confidence

High

0.014 Low

EPSS

Percentile

86.6%

Grafana 2.x, 3.x, and 4.x before 4.6.4 and 5.x before 5.2.3 allows authentication bypass because an attacker can generate a valid “remember me” cookie knowing only a username of an LDAP or OAuth user.

7.9 High

AI Score

Confidence

High

0.014 Low

EPSS

Percentile

86.6%