5.4 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L
7.5 High
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
9.1%
A vulnerability in the underlying authentication system of the Grafana web presentation tool is related to
flaws in the authorization mechanism when processing the verify_email_enabled parameter. Exploitation of the vulnerability
could allow an attacker acting remotely to bypass email verification and prevent legitimate email owners from registering.
email owners from registering
5.4 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L
7.5 High
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
9.1%