10 matches found
CVE-2020-12245 vulnerabilities
Vulnerabilities for packages: grafana-fips...
Linux Distros Unpatched Vulnerability : CVE-2020-12245
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Grafana before 6.7.3 allows table-panel XSS via column.title or cellLinkTooltip. CVE-2020-12245 Note that Nessus relies on the presence of the package as report...
AlmaLinux 8 : grafana (ALSA-2020:4682)
The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2020:4682 advisory. - Grafana 5.3.1 has XSS via a column style on the Dashboard Table Panel screen. NOTE: this issue exists because of an incomplete fix for CVE-2018-12099...
CentOS 8 : grafana (CESA-2020:4682)
The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2020:4682 advisory. - grafana: XSS vulnerability via a column style on the Dashboard Table Panel screen CVE-2018-18624 - grafana: arbitrary file read via MySQL data source...
Moderate: Red Hat Security Advisory: grafana security, bug fix, and enhancement update
An update for grafana is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...
Moderate: Red Hat Security Advisory: OpenShift Container Platform 4.6.1 image security update
An update is now available for Red Hat OpenShift Container Platform 4.6. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...
RHEL 8 : Red Hat OpenShift Service Mesh 1.0 servicemesh-grafana (RHSA-2020:2861)
The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:2861 advisory. Red Hat OpenShift Service Mesh is Red Hat's distribution of the Istio service mesh project, tailored for installation into an on-premise...
Important: Red Hat Security Advisory: Red Hat OpenShift Service Mesh servicemesh-grafana security update
An update for servicemesh-grafana is now available for OpenShift Service Mesh 1.1. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...
openSUSE: Security Advisory for grafana, (openSUSE-SU-2020:0892-1)
The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
CVE-2020-12245
CVE-2020-12245 affects Grafana prior to version 6.7.3 and enables an XSS condition in the Dashboard/Table panel via column.title or cellLinkTooltip. The vulnerability arises from insufficient input protection in table panel rendering, allowing injected JavaScript to execute when users interact wi...