5 matches found
AlmaLinux 8 : grafana (ALSA-2020:4682)
The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2020:4682 advisory. - Grafana 5.3.1 has XSS via a column style on the Dashboard Table Panel screen. NOTE: this issue exists because of an incomplete fix for CVE-2018-12099...
CentOS 8 : grafana (CESA-2020:4682)
The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2020:4682 advisory. - grafana: XSS vulnerability via a column style on the Dashboard Table Panel screen CVE-2018-18624 - grafana: arbitrary file read via MySQL data source...
Moderate: Red Hat Security Advisory: grafana security, bug fix, and enhancement update
An update for grafana is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...
Moderate: Red Hat Security Advisory: OpenShift Container Platform 4.6.1 image security update
An update is now available for Red Hat OpenShift Container Platform 4.6. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...
CVE-2020-11110
Affected product: Grafana up to version 6.7.1. Issue: unauthenticated stored XSS in the originalUrl field that enables execution of injected JavaScript after opening the Original Dashboard from a snapshot. Impact: potential browser context compromise and arbitrary script execution on victim’s sid...