Lucene search
+L

7 matches found

Tenable Nessus
Tenable Nessus
added 2025/09/02 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2020-12458

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An information-disclosure flaw was found in Grafana through 6.7.3. The database directory /var/lib/grafana and database file /var/lib/grafana/grafana.db are wor...

5.5CVSS6.4AI score0.00465EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2022/02/09 12:0 a.m.64 views

AlmaLinux 8 : grafana (ALSA-2020:4682)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2020:4682 advisory. - Grafana 5.3.1 has XSS via a column style on the Dashboard Table Panel screen. NOTE: this issue exists because of an incomplete fix for CVE-2018-12099...

6.5CVSS6.4AI score0.09619EPSS
Exploits4References9
Tenable Nessus
Tenable Nessus
added 2021/02/01 12:0 a.m.48 views

CentOS 8 : grafana (CESA-2020:4682)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2020:4682 advisory. - grafana: XSS vulnerability via a column style on the Dashboard Table Panel screen CVE-2018-18624 - grafana: arbitrary file read via MySQL data source...

6.5CVSS6.5AI score0.09619EPSS
Exploits3References9
RedHat Linux
RedHat Linux
added 2020/11/04 1:31 a.m.55 views

Moderate: Red Hat Security Advisory: grafana security, bug fix, and enhancement update

An update for grafana is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

6.5CVSS6.6AI score0.09619EPSS
Exploits3References11
ALT Linux
ALT Linux
added 2020/05/15 12:0 a.m.43 views

Security fix for the ALT Linux 9 package grafana version 6.7.3-alt1

May 15, 2020 Alexey Shabalin 6.7.3-alt1 - 6.7.3 - create grafana.db on first installation - change permissions of /var/lib/grafana to 750 Fixes: CVE-2020-12458 - change permissions of /var/lib/grafana/grafana.db to 640 and user/group grafana:grafana CVE-2020-12458...

2.1CVSS6.1AI score0.00465EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2020/05/14 12:0 a.m.40 views

Fedora 31 : grafana (2020-d109a1d1d9)

rebase to upstream Grafana 6.7.3 - including fix for CVE-2020-12458 and CVE-2020-12459 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible...

5.5CVSS6.6AI score0.00465EPSS
Exploits1References3
CVE
CVE
added 2020/04/29 3:57 p.m.187 views

CVE-2020-12458

Grafana CVE-2020-12458: An information-disclosure flaw exists through Grafana 6.7.3 where the database directory /var/lib/grafana and /var/lib/grafana/grafana.db are world-readable, potentially exposing sensitive datasource passwords. Public advisories (e.g., ALINUX3-SA-2021:0073, RHSA/CESA entri...

5.5CVSS5.5AI score0.00465EPSS
Exploits1References6Affected Software1
Rows per page
Query Builder