Описание
Grafana through 6.7.1 allows stored XSS due to insufficient input protection in the originalUrl field, which allows an attacker to inject JavaScript code that will be executed after clicking on Open Original Dashboard after visiting the snapshot.
A flaw was found in grafana. The lack of URL sanitizing allows for stored XSS.
Отчет
Both OpenShift 3.11 and 4.x grafana-container's package a vulnerable version of grafana. However the grafana instance is set to read-only meaning that the potential XSS attack cannot be performed because the original url field cannot be modified. Access to the grafana panel is additionally behind OpenShift OAuth proxy and requires admin permissions. As OpenShift still packages the vulnerable code, the components are affected but the impact is Low.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| OpenShift Service Mesh 1 | servicemesh-grafana | Will not fix | ||
| Red Hat Ceph Storage 2 | grafana | Out of support scope | ||
| Red Hat Ceph Storage 3 | grafana | Affected | ||
| Red Hat Ceph Storage 3 | grafana-container | Affected | ||
| Red Hat Ceph Storage 4 | rhceph/rhceph-4-dashboard-rhel8 | Affected | ||
| Red Hat OpenShift Container Platform 3.11 | openshift3/grafana | Fix deferred | ||
| Red Hat Storage 3 | grafana | Affected | ||
| Red Hat Enterprise Linux 8 | grafana | Fixed | RHSA-2020:4682 | 04.11.2020 |
| Red Hat OpenShift Container Platform 4.6 | openshift4/ose-grafana | Fixed | RHSA-2020:4298 | 27.10.2020 |
Показывать по
Дополнительная информация
6.1 Medium
CVSS3
Связанные уязвимости
Grafana through 6.7.1 allows stored XSS due to insufficient input protection in the originalUrl field, which allows an attacker to inject JavaScript code that will be executed after clicking on Open Original Dashboard after visiting the snapshot.
Grafana through 6.7.1 allows stored XSS due to insufficient input protection in the originalUrl field, which allows an attacker to inject JavaScript code that will be executed after clicking on Open Original Dashboard after visiting the snapshot.
Grafana through 6.7.1 allows stored XSS due to insufficient input prot ...
ELSA-2020-4682: grafana security, bug fix, and enhancement update (MODERATE)
6.1 Medium
CVSS3