Описание
Organization admins can delete pending invites created in an organization they are not part of.
A flaw was found in Grafana. Organization administrators may be able to delete pending invites created in organizations they are not a part of.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 10 | grafana | Fix deferred | ||
| Red Hat Enterprise Linux 8 | grafana | Fix deferred | ||
| Red Hat Enterprise Linux 9 | grafana | Fix deferred | ||
| Red Hat Storage 3 | grafana | Fix deferred |
Показывать по
10
Дополнительная информация
Статус:
Low
Дефект:
CWE-639
https://bugzilla.redhat.com/show_bug.cgi?id=2322479grafana: Org admin can delete pending invites in different org
EPSS
Процентиль: 17%
0.00055
Низкий
2.2 Low
CVSS3
Связанные уязвимости
CVSS3: 2.2
ubuntu
около 1 года назад
Organization admins can delete pending invites created in an organization they are not part of.
CVSS3: 2.2
nvd
около 1 года назад
Organization admins can delete pending invites created in an organization they are not part of.
CVSS3: 2.2
debian
около 1 года назад
Organization admins can delete pending invites created in an organizat ...
CVSS3: 2.2
github
около 1 года назад
Grafana org admin can delete pending invites in different org
EPSS
Процентиль: 17%
0.00055
Низкий
2.2 Low
CVSS3