CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

SUSE CVE•added 2023/02/15 3:25 a.m.•2 views

SUSE CVE-2022-32275

Grafana 8.4.3 allows reading files via for example a /dashboard/snapshot/%7B%7Bconstructor.constructor'/.. /.. /.. /.. /.. /.. /.. /.. /etc/passwd URI. NOTE: the vendor's position is that there is no vulnerability; this request yields a benign error page, not /etc/passwd content...

7.5CVSS9.5AI score0.67373EPSS

Exploits1References3

ATTACKERKB•added 2022/06/17 1:15 p.m.•2 views

CVE-2022-32276

Grafana 8.4.3 allows unauthenticated access via for example a /dashboard/snapshot/?orgId=0 URI. NOTE: the vendor considers this a UI bug, not a vulnerability...

7.5CVSS5.3AI score0.50822EPSS

Exploits1References3

OSV•added 2022/06/17 1:15 p.m.•7 views

CVE-2022-32276

Grafana 8.4.3 allows unauthenticated access via for example a /dashboard/snapshot/?orgId=0 URI. NOTE: the vendor considers this a UI bug, not a vulnerability...

7.5CVSS7.6AI score

Exploits0References2

Positive Technologies•added 2022/06/06 12:0 a.m.•4 views

PT-2022-2827 · Grafana · Grafana

Name of the Vulnerable Software and Affected Versions: Grafana version 8.4.3 Description: The issue in Grafana is related to the possibility of bypassing the authentication procedure. Exploitation of this issue may allow a remote attacker to elevate their privileges by sending a specially crafted...

10CVSS9.5AI score0.67373EPSS

Exploits1References17

OSV•added 2020/09/22 3:11 p.m.•8 views

SUSE-SU-2020:2715-1 Security update for grafana

This update for grafana fixes the following issues: - CVE-2020-11110: Fixed a stored XSS in dashboard snapshot original dashboard link bsc1174583...

5.4CVSS6AI score0.54022EPSS

Exploits0References3

Rows per page