CVE-2021-27962

Опубликовано: 22 мар. 2021

Источник: ubuntu

Приоритет: medium

EPSS Низкий

CVSS2: 4.9

CVSS3: 7.1

Описание

Grafana Enterprise 7.2.x and 7.3.x before 7.3.10 and 7.4.x before 7.4.5 allows a dashboard editor to bypass a permission check concerning a data source they should not be able to access.

Релиз	Статус	Примечание
bionic	DNE
devel	DNE
esm-apps/xenial	not-affected
esm-infra-legacy/trusty	DNE
esm-infra/focal	DNE
focal	DNE
groovy	DNE
precise/esm	DNE
trusty	ignored	end of standard support
trusty/esm	DNE

Показывать по

Ссылки на источники

https://www.cve.org/CVERecord?id=CVE-2021-27962

EPSS

Процентиль: 51%

0.00278

Низкий

4.9 Medium

CVSS2

7.1 High

CVSS3

Связанные уязвимости

CVE-2021-27962

CVSS3: 6.8

redhat

больше 4 лет назад

Grafana Enterprise 7.2.x and 7.3.x before 7.3.10 and 7.4.x before 7.4.5 allows a dashboard editor to bypass a permission check concerning a data source they should not be able to access.

CVE-2021-27962

CVSS3: 7.1

nvd

около 4 лет назад

Grafana Enterprise 7.2.x and 7.3.x before 7.3.10 and 7.4.x before 7.4.5 allows a dashboard editor to bypass a permission check concerning a data source they should not be able to access.

CVE-2021-27962

CVSS3: 7.1

debian

около 4 лет назад

Grafana Enterprise 7.2.x and 7.3.x before 7.3.10 and 7.4.x before 7.4. ...

GHSA-6858-383c-7xhr

CVSS3: 7.1

github

около 3 лет назад

Grafana Enterprise 7.2.x and 7.3.x before 7.3.10 and 7.4.x before 7.4.5 allows a dashboard editor to bypass a permission check concerning a data source they should not be able to access.

openSUSE-SU-2021:2675-1

suse-cvrf

почти 4 года назад

Security update for SUSE Manager Client Tools

EPSS

Процентиль: 51%

0.00278

Низкий

4.9 Medium

CVSS2

7.1 High

CVSS3

CVE-2021-27962

Описание

Пакет grafana

Ссылки на источники

Связанные уязвимости