Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2020/04/09 7:7 a.m.25 views

CVE-2018-19039

A security issue was found that could allow any users with Editor or Admin permissions in Grafana to read any file that the Grafana process can read from the filesystem. However, in order to exploit this issue you would need to be logged in to the system as a legitimate user with Editor or Admin...

6.5CVSS2.5AI score0.0728EPSS
Exploits0References2
Check Point Advisories
Check Point Advisories
added 2019/11/25 12:0 a.m.14 views

Grafana Labs Arbitrary File Read (CVE-2018-19039)

An information disclosure vulnerability exists in Grafana. This vulnerability is due to insufficient handling of direct link image rendering of HTML text panels. A remote, authenticated attacker can exploit the vulnerability by creating a crafted HTML text panel and requesting a direct link image...

4CVSS2AI score0.0728EPSS
Exploits0
OpenVAS
OpenVAS
added 2019/07/01 12:0 a.m.65 views

Grafana 4.1.0 < 4.6.5, 5.0 < 5.3.3 Information Disclosure Vulnerability

Grafana is prone to an information disclosure vulnerability. Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software;...

6.5CVSS6.5AI score0.0728EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2019/04/30 3:57 p.m.51 views

Moderate: Red Hat Security Advisory: Red Hat Ceph Storage 3.2 security, bug fix, and enhancement update

An update is now available for Red Hat Ceph Storage 3.2. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE links in...

6.5CVSS6.5AI score0.0728EPSS
Exploits1References57
RedHat Linux
RedHat Linux
added 2019/04/11 1:33 p.m.57 views

Moderate: Red Hat Security Advisory: Red Hat Ceph Storage 2.5 security and bug fix update

An update for ceph and grafana is now available for Red Hat Ceph Storage 2.5 for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

6.5CVSS6.8AI score0.0728EPSS
Exploits0References13
CVE
CVE
added 2018/12/13 7:0 p.m.205 views

CVE-2018-19039

Grafana CVE-2018-19039 affects Grafana before 4.6.5 and 5.x before 5.3.3, allowing remote authenticated users with Editor or Admin perms to read arbitrary files. Root cause is a file-read exposure via dashboards/editors. Upgrading to Grafana 4.6.5 or 5.3.3+ mitigates the issue; check vendor advis...

6.5CVSS6.3AI score0.0728EPSS
Exploits0References7Affected Software1
Rows per page
Query Builder