Lucene search
K

9 matches found

OSV
OSV
added 2025/02/28 3:32 p.m.4 views

OESA-2025-1189 grafana security update

Grafana is an open source, feature rich metrics dashboard and graph editor for Graphite, InfluxDB OpenTSDB. Security Fixes: Grafana is an open-source platform for monitoring and observability. Versions on the 8.x and 9.x branch prior to 9.0.3, 8.5.9, 8.4.10, and 8.3.10 are vulnerable to stored...

8.7CVSS6.7AI score0.68603EPSS
Exploits0References10
OSV
OSV
added 2025/02/28 3:32 p.m.6 views

OESA-2025-1186 grafana security update

Grafana is an open source, feature rich metrics dashboard and graph editor for Graphite, InfluxDB OpenTSDB. Security Fixes: Grafana is an open-source platform for monitoring and observability. Versions on the 8.x and 9.x branch prior to 9.0.3, 8.5.9, 8.4.10, and 8.3.10 are vulnerable to stored...

8.7CVSS6.7AI score0.68603EPSS
Exploits0References10
SUSE CVE
SUSE CVE
added 2023/02/15 3:25 a.m.4 views

SUSE CVE-2022-31123

Grafana is an open source observability and data visualization platform. Versions prior to 9.1.8 and 8.5.14 are vulnerable to a bypass in the plugin signature verification. An attacker can convince a server admin to download and successfully run a malicious plugin even though unsigned plugins are...

4CVSS7.2AI score0.00249EPSS
Exploits0References9
OSV
OSV
added 2023/02/10 2:15 p.m.12 views

SUSE-SU-2023:0362-1 Security update for grafana

This update for grafana fixes the following issues: - Version update from 8.5.13 to 8.5.15 jscPED-2617: CVE-2022-39306: Security fix for privilege escalation bsc1205225 CVE-2022-39307: Omit error from http response when user does not exists bsc1205227 CVE-2022-39201: Do not forward login cookie i...

8.1CVSS6.2AI score0.01228EPSS
Exploits0References13
Tenable Nessus
Tenable Nessus
added 2022/11/13 12:0 a.m.34 views

FreeBSD : Grafana -- Plugin signature bypass (4e60d660-6298-11ed-9ca2-6c3be5272acd)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 4e60d660-6298-11ed-9ca2-6c3be5272acd advisory. - Grafana is an open source observability and data visualization platform. Versions prior to 9.1.8 and...

7.8CVSS7AI score0.00249EPSS
Exploits0References3
NVD
NVD
added 2022/10/13 10:15 p.m.30 views

CVE-2022-31123

Grafana is an open source observability and data visualization platform. Versions prior to 9.1.8 and 8.5.14 are vulnerable to a bypass in the plugin signature verification. An attacker can convince a server admin to download and successfully run a malicious plugin even though unsigned plugins are...

7.8CVSS0.00249EPSS
Exploits0References3
Grafana
Grafana
added 2022/10/12 12:0 a.m.7 views

Plugin signature bypass

Grafana is an open source observability and data visualization platform. Versions prior to 9.1.8 and 8.5.14 are vulnerable to a bypass in the plugin signature verification. An attacker can convince a server admin to download and successfully run a malicious plugin even though unsigned plugins are...

7.8CVSS6.8AI score0.00249EPSS
Exploits0
FreeBSD
FreeBSD
added 2022/07/04 12:0 a.m.30 views

Grafana -- Plugin signature bypass

Grafana Labs reports: On July 4th as a result of an internal security audit we have discovered a bypass in the plugin signature verification by exploiting a versioning flaw. We believe that this vulnerability is rated at CVSS 6.1 CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:L...

7.8CVSS6.4AI score0.01228EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2014/06/04 12:0 a.m.23 views

Adobe Reader Plugin Signature Bypass Vulnerability - Windows

Adobe Reader is prone to plugin signature bypass vulnerability. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

4.6CVSS6.7AI score0.00902EPSS
Exploits0References4
Rows per page
Query Builder