(RHSA-2020:2641) Important: grafana security update

2020-06-22T10:50:20
ID RHSA-2020:2641
Type redhat
Reporter RedHat
Modified 2020-06-22T10:57:57

Description

Grafana is an open source, feature rich metrics dashboard and graph editor for Graphite, InfluxDB & OpenTSDB.

Security Fix(es):

  • grafana: SSRF incorrect access control vulnerability allows unauthenticated users to make grafana send HTTP requests to any URL (CVE-2020-13379)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.