A directory traversal vulnerability exists in Grafana Labs 8.0.0 to 8.3.0 that allows an unauthenticated, remote attacker , via a specially crafted HTTP GET request, to read arbitrary files and examine environment variables.

Binary data grafana_cve-2021-43798.nbin

VendorProductVersionCPE
grafanagrafanacpe:/a:grafana:grafana

Vendor	Product	Version	CPE
grafana	grafana		cpe:/a:grafana:grafana

References

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43798

www.nessus.org/u?557b7e5a

redhatcve 1

githubexploit 43

alpinelinux 1

osv 3

prion 1

openvas 6

nessus 6

packetstorm 1

freebsd 1

ubuntucve 1

zdt 1

f5 1

veracode 1

nuclei 1

cve 1

checkpoint_advisories 1

hivepro 1

metasploit 1

github 1

exploitdb 1

altlinux 1

avleonov 1

trellix 2

archlinux 1

rapid7blog 1

suse 1

ibm 1

redhatcve

CVE-2021-43798

2021-12-08 18:25:38

githubexploit

Exploit for Path Traversal in Grafana

2021-12-08 03:43:31

Exploit for Path Traversal in Grafana

2021-12-07 10:43:30

Exploit for Path Traversal in Grafana

2023-01-09 05:53:30

alpinelinux

CVE-2021-43798

2021-12-07 19:15:00

osv

Grafana path traversal

2024-02-01 00:16:10

BIT-grafana-2021-43798

2024-03-06 10:59:06

CVE-2021-43798

2021-12-07 19:15:07

prion

Directory traversal

2021-12-07 19:15:00

openvas

Grafana 8.0.0-beta1 - 8.3.0 Directory Traversal Vulnerability - Active Check

2021-12-08 00:00:00

Grafana 8.0.0-beta1 - 8.3.0 Directory Traversal Vulnerability - Version Check

2021-12-08 00:00:00

openSUSE: Security Advisory for SUSE (SUSE-SU-2022:1396-1)

2022-05-17 00:00:00

nessus

FreeBSD : Grafana -- Path Traversal (e33880ed-5802-11ec-8398-6c3be5272acd)

2021-12-13 00:00:00

SUSE SLES15 / openSUSE 15 Security Update : SUSE Manager Client Tools (SUSE-SU-2024:0487-1)

2024-02-17 00:00:00

openSUSE 15 Security Update : SUSE Manager Client Tools (SUSE-SU-2022:1396-1)

2023-01-20 00:00:00

packetstorm

Grafana 8.3.0 Directory Traversal / Arbitrary File Read

2021-12-09 00:00:00

freebsd

Grafana -- Path Traversal

2021-12-03 00:00:00

ubuntucve

CVE-2021-43798

2021-12-07 00:00:00

zdt

Grafana 8.3.0 - Directory Traversal and Arbitrary File Read Exploit

2021-12-09 00:00:00

K43312023 : Grafana vulnerability CVE-2021-43798

2022-02-20 00:00:00

veracode

Path Traversal

2021-12-08 06:09:14

nuclei

Grafana v8.x - Arbitrary File Read

2021-12-08 11:16:47

cve

CVE-2021-43798

2021-12-07 19:15:00

checkpoint_advisories

Grafana Directory Traversal (CVE-2021-43798)

2021-12-08 00:00:00

hivepro

Grafana releases an emergency patch for a Zero-Day vulnerability

2021-12-08 09:54:40

metasploit

Grafana Plugin Path Traversal

2021-12-13 10:27:29

github

Grafana path traversal

2024-02-01 00:16:10

exploitdb

Grafana 8.3.0 - Directory Traversal and Arbitrary File Read

2021-12-09 00:00:00

altlinux

Security fix for the ALT Linux 10 package grafana version 8.1.8-alt1

2021-12-16 00:00:00

avleonov

Vulnerability Intelligence based on media hype. It works? Grafana LFI and Log4j “Log4Shell” RCE

2021-12-12 23:51:26

trellix

The Bug Report - December 2021 Edition

2022-01-19 00:00:00

The Bug Report - December 2021 Edition

2022-01-19 00:00:00

archlinux

[ASA-202112-11] grafana: directory traversal

2021-12-11 00:00:00

rapid7blog

Metasploit Wrap-Up

2022-01-07 17:28:25

suse

Security update for SUSE Manager Client Tools (moderate)

2022-04-25 00:00:00

ibm

Security Bulletin: Watson Machine Learning Accelerator on Cloud Pak for Data is affected by multiple vulnerabilities in Grafana

2023-11-17 16:01:52

Products

Security Intelligence
Non-intrusive assessment
Developers SDK
Windows scanner
Linux scanner
Perimeter control tool
MSSP

Database

Vulnerabilities
Exploits
IOC
Security News
BugBounty
Popular
Wild Exploited
Top Vulnerabilities

Tools

Linux Security Scanner
API integration
Subscriptions
Plugins
Manual Audit

Learn More

Stats
API
Docs
Api-keys
License
Pricing
Glossary
FAQ

Company

Blog
Contacts
About Us
OpenSource
EULA
Brand Guideline
Privacy Policy

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply. All product names, logos, and brands are property of their respective owners. All company, product and service names used in this website are for identification purposes only. Use of these names, logos, and brands does not imply endorsement.If you are an owner of some content and want it to be removed, please contact us. Using Vulners services you are accepting Vulners services end-user license agreement

@2024 Vulners Inc

JSON

Related for GRAFANA_CVE-2021-43798.NBIN