Описание
Grafana 5.3.1 has XSS via a column style on the "Dashboard > Table Panel" screen. NOTE: this issue exists because of an incomplete fix for CVE-2018-12099.
Ссылки
- ExploitThird Party Advisory
- ExploitThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:grafana:grafana:5.3.1:*:*:*:*:*:*:*
EPSS
Процентиль: 67%
0.00563
Низкий
6.1 Medium
CVSS3
4.3 Medium
CVSS2
Дефекты
CWE-79
Связанные уязвимости
CVSS3: 6.1
ubuntu
около 5 лет назад
Grafana 5.3.1 has XSS via a column style on the "Dashboard > Table Panel" screen. NOTE: this issue exists because of an incomplete fix for CVE-2018-12099.
CVSS3: 6.1
redhat
около 5 лет назад
Grafana 5.3.1 has XSS via a column style on the "Dashboard > Table Panel" screen. NOTE: this issue exists because of an incomplete fix for CVE-2018-12099.
CVSS3: 6.1
debian
около 5 лет назад
Grafana 5.3.1 has XSS via a column style on the "Dashboard > Table Pan ...
oracle-oval
больше 4 лет назад
ELSA-2020-4682: grafana security, bug fix, and enhancement update (MODERATE)
EPSS
Процентиль: 67%
0.00563
Низкий
6.1 Medium
CVSS3
4.3 Medium
CVSS2
Дефекты
CWE-79