Lucene search
+L

6 matches found

OSV
OSV
added 2026/07/10 2:58 p.m.4 views

CVE-2026-8609 Pre-authentication denial of service via the OAuth login route

An unauthenticated attacker can repeatedly call Grafana's OAuth login route with unique values, causing unbounded memory growth that can eventually exhaust memory and crash the Grafana instance denial of service...

5.3CVSS6.1AI score0.00397EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.11 views

MiracleLinux 8 : grafana-7.5.15-4.el8.ML.1 (AXSA:2023-6073:05)

The remote MiracleLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2023-6073:05 advisory. golang: net/http/httputil: ReverseProxy should not forward unparseable query parameters CVE-2022-2880 golang: net/http: handle server errors after...

7.5CVSS7.8AI score0.02607EPSS
Exploits1References5
RedhatCVE
RedhatCVE
added 2026/01/09 10:53 a.m.10 views

CVE-2022-23126

TeslaMate before 1.25.1 when using the default Docker configuration allows attackers to open doors of Tesla vehicles, start Keyless Driving, and interfere with vehicle operation en route. This occurs because an attacker can leverage Grafana login access to obtain a token for Tesla API calls...

9.8CVSS6.7AI score0.02208EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.25 views

EUVD-2022-28217

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.02208EPSS
Exploits0References7
Prion
Prion
added 2022/01/24 7:15 p.m.20 views

Open redirect

TeslaMate before 1.25.1 when using the default Docker configuration allows attackers to open doors of Tesla vehicles, start Keyless Driving, and interfere with vehicle operation en route. This occurs because an attacker can leverage Grafana login access to obtain a token for Tesla API calls...

7.5CVSS9.2AI score0.02208EPSS
Exploits0References5Affected Software1
CNNVD
CNNVD
added 2022/01/24 12:0 a.m.9 views

TeslaMate 授权问题漏洞

TeslaMate is an open source project, a self-hosted data logger for Tesla. versions prior to TeslaMate 1.25.1 contain an elevation of privilege vulnerability that stems from Tesla's use of the default Docker configuration, which allows an attacker to use Grafana login access to obtain a token for...

9.8CVSS5.7AI score0.02208EPSS
Exploits0References6
Rows per page
Query Builder