Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2025-6023

Опубликовано: 18 июл. 2025
Источник: nvd
CVSS3: 7.6
EPSS Низкий

Описание

An open redirect vulnerability has been identified in Grafana OSS that can be exploited to achieve XSS attacks. The vulnerability was introduced in Grafana v11.5.0.

The open redirect can be chained with path traversal vulnerabilities to achieve XSS.

Fixed in versions 12.0.2+security-01, 11.6.3+security-01, 11.5.6+security-01, 11.4.6+security-01 and 11.3.8+security-01

EPSS

Процентиль: 79%
0.01293
Низкий

7.6 High

CVSS3

Дефекты

CWE-79

Связанные уязвимости

CVSS3: 7.6
debian
16 дней назад

An open redirect vulnerability has been identified in Grafana OSS that ...

CVSS3: 7.6
github
16 дней назад

Grafana is vulnerable to XSS attacks through open redirects and path traversal

EPSS

Процентиль: 79%
0.01293
Низкий

7.6 High

CVSS3

Дефекты

CWE-79