Lucene search
K

10 matches found

SUSE CVE
SUSE CVE
added 2023/10/31 2:28 a.m.3 views

SUSE CVE-2020-27846

A signature verification vulnerability exists in crewjam/saml. This flaw allows an attacker to bypass SAML Authentication. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability...

9.8CVSS8.8AI score0.04872EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2022/05/10 12:0 a.m.36 views

NewStart CGSL MAIN 6.02 : grafana Multiple Vulnerabilities (NS-SA-2022-0053)

The remote NewStart CGSL host, running version MAIN 6.02, has grafana packages installed that are affected by multiple vulnerabilities: - Grafana before 7.1.0-beta 1 allows XSS via a query alias for the ElasticSearch datasource. CVE-2020-24303 - A signature verification vulnerability exists in...

10CVSS7.5AI score0.04872EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2021/05/26 12:0 a.m.44 views

Oracle Linux 8 : grafana (ELSA-2021-1859)

The remote Oracle Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2021-1859 advisory. 7.3.6-2 - change working dir to in grafana-cli wrapper fixes Red Hat BZ 1916083 - add pcp-redis-datasource to allowloadingunsignedplugins config option...

10CVSS7.6AI score0.04872EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2021/05/19 12:0 a.m.34 views

RHEL 8 : grafana (RHSA-2021:1859)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2021:1859 advisory. Grafana is an open source, feature rich metrics dashboard and graph editor for Graphite, InfluxDB & OpenTSDB. The following packages have be...

10CVSS7.6AI score0.04872EPSS
Exploits1References11
RedHat Linux
RedHat Linux
added 2021/05/18 2:45 p.m.66 views

Moderate: Red Hat Security Advisory: grafana security, bug fix, and enhancement update

An update for grafana is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

10CVSS6.8AI score0.04872EPSS
Exploits1References7
RedHat Linux
RedHat Linux
added 2021/02/24 3:9 p.m.125 views

Moderate: Red Hat Security Advisory: OpenShift Container Platform 4.7.0 security, bug fix, and enhancement update

Red Hat OpenShift Container Platform release 4.7.0 is now available. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

10CVSS8.1AI score0.69062EPSS
Exploits4References1706
OpenVAS
OpenVAS
added 2021/01/11 12:0 a.m.18 views

Fedora: Security Advisory for grafana (FEDORA-2020-968067abfa)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

10CVSS9.7AI score0.04872EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2021/01/05 12:0 a.m.29 views

Fedora 32 : grafana (2020-968067abfa)

update to upstream 7.3.6 Note regarding CVE-2020-27846: SAML is not supported in the open source version of Grafana, however the dependency on crewjam/saml is also present in the open source version. This update removes this dependency altogether. Note that Tenable Network Security has extracted...

10CVSS8AI score0.04872EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2021/01/05 12:0 a.m.36 views

Fedora 33 : grafana (2020-64e54abd9f)

update to upstream 7.3.6 Note regarding CVE-2020-27846: SAML is not supported in the open source version of Grafana, however the dependency on crewjam/saml is also present in the open source version. This update removes this dependency altogether. Note that Tenable Network Security has extracted...

10CVSS8AI score0.04872EPSS
Exploits1References2
CVE
CVE
added 2020/12/21 3:16 p.m.329 views

CVE-2020-27846

CVE-2020-27846 is a signature verification vulnerability in crewjam/saml that can allow bypass of SAML authentication. The issue affects Grafana deployments including affected Grafana versions referenced in multiple advisories (e.g., Red Hat RHSA-2021:1859) and is scored with a high/critical impa...

10CVSS9.1AI score0.04872EPSS
Exploits1References7Affected Software1
Rows per page
Query Builder