Lucene search

BIT-grafana-2023-4399

🗓️ 06 Mar 2024 10:57:52Reported by GoogleType

osv🔗 osv.dev👁 20 Views

Grafana Enterprise denies specific hosts to prevent instance calls, but can be bypassed with punycode encoding

Reporter	Title	Published	Views	Family All 12
OSV	BIT-2023-4399	25 Oct 202306:18	–	osv
OSV	CVE-2023-4399	17 Oct 202308:15	–	osv
Vulnrichment	CVE-2023-4399	17 Oct 202307:09	–	vulnrichment
RedhatCVE	CVE-2023-4399	13 Feb 202520:57	–	redhatcve
CVE	CVE-2023-4399	17 Oct 202308:15	–	cve
AlpineLinux	CVE-2023-4399	17 Oct 202308:15	–	alpinelinux
Prion	Design/Logic Flaw	17 Oct 202308:15	–	prion
Tenable Nessus	Grafana Enterprise Datasource Network Restrictions Bypass (CVE-2023-4399)	21 Nov 202300:00	–	nessus
NVD	CVE-2023-4399	17 Oct 202308:15	–	nvd
UbuntuCve	CVE-2023-4399	17 Oct 202300:00	–	ubuntucve

Source	Link
grafana	www.grafana.com/security/security-advisories/cve-2023-4399/
security	www.security.netapp.com/advisory/ntap-20231208-0003/

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

06 Mar 2024 10:52Current

7.2High risk

Vulners AI Score7.2

CVSS36.6 - 7.2

EPSS0.00497

SSVC