CVE-2019-15043

Опубликовано: 03 сент. 2019

Источник: debian

EPSS Критический

Описание

In Grafana 2.x through 6.x before 6.3.4, parts of the HTTP API allow unauthenticated use. This makes it possible to run a denial of service attack against the server running Grafana.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
grafana	removed			package

EPSS

Процентиль: 100%

0.90335

Критический

Связанные уязвимости

CVE-2019-15043

CVSS3: 7.5

ubuntu

около 6 лет назад

In Grafana 2.x through 6.x before 6.3.4, parts of the HTTP API allow unauthenticated use. This makes it possible to run a denial of service attack against the server running Grafana.

CVE-2019-15043

CVSS3: 4.3

redhat

около 6 лет назад

In Grafana 2.x through 6.x before 6.3.4, parts of the HTTP API allow unauthenticated use. This makes it possible to run a denial of service attack against the server running Grafana.

CVE-2019-15043

CVSS3: 7.5

nvd

около 6 лет назад

In Grafana 2.x through 6.x before 6.3.4, parts of the HTTP API allow unauthenticated use. This makes it possible to run a denial of service attack against the server running Grafana.

GHSA-c6x5-653c-4grh

CVSS3: 7.5

github

больше 3 лет назад

In Grafana 2.x through 6.x before 6.3.4, parts of the HTTP API allow unauthenticated use. This makes it possible to run a denial of service attack against the server running Grafana.

ELSA-2020-1659

oracle-oval

больше 5 лет назад

ELSA-2020-1659: grafana security, bug fix, and enhancement update (MODERATE)

EPSS

Процентиль: 100%

0.90335

Критический