Lucene search
K

172 matches found

OpenVAS
OpenVAS
added 2022/04/21 12:0 a.m.36 views

Fedora: Security Advisory for grafana (FEDORA-2022-83405f9d5b)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

8.8CVSS8.9AI score0.05994EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2022/04/21 12:0 a.m.27 views

Fedora: Security Advisory for grafana (FEDORA-2022-9dd03cab55)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

8.8CVSS8.9AI score0.05994EPSS
Exploits2References2
Fedora
Fedora
added 2022/04/20 7:16 p.m.67 views

[SECURITY] Fedora 34 Update: grafana-7.5.15-2.fc34

Grafana is an open source, feature rich metrics dashboard and graph editor for Graphite, InfluxDB & OpenTSDB...

8.8CVSS9AI score0.05994EPSS
Exploits2
Fedora
Fedora
added 2022/04/20 7:12 p.m.47 views

[SECURITY] Fedora 35 Update: grafana-7.5.15-2.fc35

Grafana is an open source, feature rich metrics dashboard and graph editor for Graphite, InfluxDB & OpenTSDB...

8.8CVSS9AI score0.05994EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2022/02/09 12:0 a.m.63 views

AlmaLinux 8 : grafana (ALSA-2020:4682)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2020:4682 advisory. - Grafana 5.3.1 has XSS via a column style on the Dashboard Table Panel screen. NOTE: this issue exists because of an incomplete fix for CVE-2018-12099...

6.5CVSS6.4AI score0.09619EPSS
Exploits4References9
Fedora
Fedora
added 2022/01/28 1:36 a.m.46 views

[SECURITY] Fedora 35 Update: grafana-7.5.11-3.fc35

Grafana is an open source, feature rich metrics dashboard and graph editor for Graphite, InfluxDB & OpenTSDB...

7.5CVSS6.9AI score0.57499EPSS
Exploits0
AlmaLinux
AlmaLinux
added 2022/01/03 7:30 a.m.68 views

Important: grafana security update

Grafana is an open source, feature rich metrics dashboard and graph editor for Graphite, InfluxDB & OpenTSDB. Security Fixes: golang: net/http: limit growth of header canonicalization cache CVE-2021-44716 For more details about the security issues, including the impact, a CVSS score,...

7.5CVSS1.3AI score0.03958EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2021/10/30 12:0 a.m.20 views

Fedora: Security Advisory for grafana (FEDORA-2021-01588ab0bf)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.8CVSS7.5AI score0.99888EPSS
Exploits1References4
Fedora
Fedora
added 2021/10/29 11:24 p.m.38 views

[SECURITY] Fedora 35 Update: grafana-7.5.11-1.fc35

Grafana is an open source, feature rich metrics dashboard and graph editor for Graphite, InfluxDB & OpenTSDB...

9.8CVSS8.6AI score0.99888EPSS
Exploits1
AlmaLinux
AlmaLinux
added 2021/10/12 10:35 a.m.40 views

Important: grafana security update

Grafana is an open source, feature rich metrics dashboard and graph editor for Graphite, InfluxDB & OpenTSDB. Security Fixes: grafana: Snapshot authentication bypass CVE-2021-39226 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and other related...

6.8CVSS2AI score0.99888EPSS
Exploits1References1
Fedora
Fedora
added 2021/10/10 3:4 a.m.42 views

[SECURITY] Fedora 34 Update: grafana-7.5.10-1.fc34

Grafana is an open source, feature rich metrics dashboard and graph editor for Graphite, InfluxDB & OpenTSDB...

6.5CVSS7.7AI score0.06975EPSS
Exploits1
OSV
OSV
added 2021/08/02 5:2 p.m.2 views

GHSA-HV53-Q76C-7F8C OS Command Injection in OpenTSDB

A remote code execution vulnerability occurs in OpenTSDB through 2.4.0 via command injection in the yrange parameter. The yrange value is written to a gnuplot file in the /tmp directory. This file is then executed via the mygnuplot.sh shell script. tsd/GraphHandler.java attempted to prevent comma...

9.8CVSS6.5AI score0.8533EPSS
Exploits5References3
vulnersOsv
vulnersOsv
added 2021/08/02 5:2 p.m.4 views

io.kamon:kamon-opentsdb_2.10 (=0.6.7), io.kamon:kamon-opentsdb_2.11 (=0.6.7) +2 more potentially affected by CVE-2020-35476 via net.opentsdb:opentsdb (>=2.3.0 <=2.4.0)

net.opentsdb:opentsdb MAVEN version =2.3.0, =2.3.2, =2.4.0 Source cves: CVE-2020-35476 Source advisory: OSV:GHSA-HV53-Q76C-7F8C...

9.8CVSS7.2AI score0.8533EPSS
Exploits5
Github Security Blog
Github Security Blog
added 2021/08/02 5:2 p.m.77 views

OS Command Injection in OpenTSDB

A remote code execution vulnerability occurs in OpenTSDB through 2.4.0 via command injection in the yrange parameter. The yrange value is written to a gnuplot file in the /tmp directory. This file is then executed via the mygnuplot.sh shell script. tsd/GraphHandler.java attempted to prevent comma...

9.8CVSS9.8AI score0.8533EPSS
Exploits5References4Affected Software1
Tenable Nessus
Tenable Nessus
added 2021/07/09 12:0 a.m.13 views

OpenTSDB HTTP Detection

Binary data opentsdbhttpdetect.nbin...

7.3AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2021/07/09 12:0 a.m.27 views

OpenTSDB yrange RCE (direct check)

Binary data opentsdbyrangerce.nbin...

9.8CVSS7.3AI score0.8533EPSS
Exploits5References2
Check Point Advisories
Check Point Advisories
added 2021/02/10 12:0 a.m.29 views

StumbleUpon OpenTSDB Remote Code Execution (CVE-2020-35476)

A remote code execution vulnerability exists in StumbleUpon OpenTSDB. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

7.5CVSS5.4AI score0.8533EPSS
Exploits5
Fedora
Fedora
added 2021/01/05 1:26 a.m.86 views

[SECURITY] Fedora 33 Update: grafana-7.3.6-1.fc33

Grafana is an open source, feature rich metrics dashboard and graph editor for Graphite, InfluxDB & OpenTSDB...

10CVSS1.4AI score0.04872EPSS
Exploits1
Fedora
Fedora
added 2021/01/05 1:19 a.m.80 views

[SECURITY] Fedora 32 Update: grafana-7.3.6-1.fc32

Grafana is an open source, feature rich metrics dashboard and graph editor for Graphite, InfluxDB & OpenTSDB...

10CVSS1.4AI score0.04872EPSS
Exploits1
CNVD
CNVD
added 2020/12/17 12:0 a.m.3 views

OpenTSDB Command Injection Vulnerability

OpenTSDB is a distributed, scalable time series database TSDB based on Hbase. A command execution vulnerability exists in OpenTSDB 2.4.0 and earlier versions. An attacker can exploit this vulnerability to achieve remote code execution via the yrange parameter injection command...

9.8CVSS8.5AI score0.8533EPSS
Exploits5References1
Rows per page
Query Builder