Lucene search
+L

14 matches found

Tenable Nessus
Tenable Nessus
added 2025/09/03 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2021-41174

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Grafana is an open-source platform for monitoring and observability. In affected versions if an attacker is able to convince a victim to visit a URL referencing...

6.9CVSS7.5AI score0.84607EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2022/12/14 12:0 a.m.51 views

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : grafana (SUSE-SU-2022:4428-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:4428-1 advisory. Version update from 8.3.10 to 8.5.13 jscPED-2145: - Security fixes: CVE-2022-36062: bsc1203596...

9.8CVSS7.3AI score0.88849EPSS
Exploits45References36
OpenVAS
OpenVAS
added 2022/12/14 12:0 a.m.27 views

SUSE: Security Advisory (SUSE-SU-2022:4428-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.4AI score0.88849EPSS
Exploits45References4
OpenVAS
OpenVAS
added 2022/06/21 12:0 a.m.35 views

SUSE: Security Advisory (SUSE-SU-2022:2134-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.3AI score0.99888EPSS
Exploits47References18
VulnCheck KEV
VulnCheck KEV
added 2022/05/31 12:0 a.m.9 views

VulnCheck KEV: CVE-2021-41174

Grafana is an open-source platform for monitoring and observability. In affected versions if an attacker is able to convince a victim to visit a URL referencing a vulnerable page, arbitrary JavaScript content may be executed within the context of the victim's browser. The user visiting the...

6.9CVSS6.9AI score0.84607EPSS
Exploits0References1
ALT Linux
ALT Linux
added 2022/05/05 12:0 a.m.94 views

Security fix for the ALT Linux 10 package grafana version 8.5.0-alt1

8.5.0-alt1 built May 5, 2022 Alexey Shabalin in task 299382 April 26, 2022 Alexey Shabalin - 8.5.0 - Use pre-builded frontend - Fixes: + CVE-2022-24812 + CVE-2022-21702 + CVE-2022-21703 + CVE-2022-21713 + CVE-2021-43813 + CVE-2021-43815 + CVE-2021-41244 + CVE-2021-41174...

6.8CVSS6.4AI score0.84607EPSS
Exploits1
Check Point Advisories
Check Point Advisories
added 2021/12/27 12:0 a.m.52 views

Grafana Cross-site Scripting (CVE-2021-41174)

A cross-site scripting vulnerability exists in Grafana. The vulnerability is due to insufficient validation of user input in the URI path...

4.3CVSS2.2AI score0.84607EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2021/12/13 12:0 a.m.65 views

FreeBSD : Grafana -- XSS (4b478274-47a0-11ec-bd24-6c3be5272acd)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 4b478274-47a0-11ec-bd24-6c3be5272acd advisory. - Grafana is an open-source platform for monitoring and observability. In affected versions if an...

6.9CVSS7.7AI score0.84607EPSS
Exploits0References3
OSV
OSV
added 2021/11/08 6:13 p.m.41 views

GHSA-3J9M-HCV9-RPJ8 XSS vulnerability allowing arbitrary JavaScript execution

Today we are releasing Grafana 8.2.3. This patch release includes an important security fix for an issue that affects all Grafana versions from 8.0.0-beta1. Grafana Cloud instances have already been patched and an audit did not find any usage of this attack vector. Grafana Enterprise customers we...

6.9CVSS7.9AI score0.84607EPSS
Exploits0References7
Github Security Blog
Github Security Blog
added 2021/11/08 6:13 p.m.102 views

XSS vulnerability allowing arbitrary JavaScript execution

Today we are releasing Grafana 8.2.3. This patch release includes an important security fix for an issue that affects all Grafana versions from 8.0.0-beta1. Grafana Cloud instances have already been patched and an audit did not find any usage of this attack vector. Grafana Enterprise customers we...

6.9CVSS0.2AI score0.84607EPSS
Exploits0References7Affected Software1
Circl
Circl
added 2021/11/03 9:23 p.m.23 views

CVE-2021-41174

creationtimestamp| type| source ---|---|--- 2021-11-03 21:23:30+00:00| published-proof-of-concept| https://t.me/cibsecurity/31767 2023-04-27 09:58:59+00:00| confirmed| https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2021/CVE-2021-41174.yaml...

6.9CVSS7.5AI score0.84607EPSS
Exploits0References2
NVD
NVD
added 2021/11/03 6:15 p.m.32 views

CVE-2021-41174

Grafana is an open-source platform for monitoring and observability. In affected versions if an attacker is able to convince a victim to visit a URL referencing a vulnerable page, arbitrary JavaScript content may be executed within the context of the victim's browser. The user visiting the...

6.9CVSS0.84607EPSS
Exploits0References5
OSV
OSV
added 2021/11/03 6:15 p.m.36 views

CVE-2021-41174

Grafana is an open-source platform for monitoring and observability. In affected versions if an attacker is able to convince a victim to visit a URL referencing a vulnerable page, arbitrary JavaScript content may be executed within the context of the victim's browser. The user visiting the...

6.1CVSS6.8AI score
Exploits0References5
UbuntuCve
UbuntuCve
added 2021/11/03 6:15 p.m.26 views

CVE-2021-41174

Grafana is an open-source platform for monitoring and observability. In affected versions if an attacker is able to convince a victim to visit a URL referencing a vulnerable page, arbitrary JavaScript content may be executed within the context of the victim's browser. The user visiting the...

6.9CVSS6.9AI score0.84607EPSS
Exploits0References1
Rows per page
Query Builder