exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 7

BDU:2024-02627

больше 2 лет назад

Уязвимость платформы для мониторинга и наблюдения Grafana, связанная с параллельным выполнением с использованием общего ресурса с неправильной синхронизацией, позволяющая нарушителю повысить свои привилегии

CVSS3: 8.1

EPSS: Низкий

CVE-2022-39328

больше 2 лет назад

Grafana is an open-source platform for monitoring and observability. Versions starting with 9.2.0 and less than 9.2.4 contain a race condition in the authentication middlewares logic which may allow an unauthenticated user to query an administration endpoint under heavy load. This issue is patched in 9.2.4. There are no known workarounds.

CVSS3: 9.8

EPSS: Низкий

CVE-2022-39328

больше 2 лет назад

Grafana is an open-source platform for monitoring and observability. Versions starting with 9.2.0 and less than 9.2.4 contain a race condition in the authentication middlewares logic which may allow an unauthenticated user to query an administration endpoint under heavy load. This issue is patched in 9.2.4. There are no known workarounds.

CVSS3: 8.1

EPSS: Низкий

CVE-2022-39328

больше 2 лет назад

Grafana is an open-source platform for monitoring and observability. Versions starting with 9.2.0 and less than 9.2.4 contain a race condition in the authentication middlewares logic which may allow an unauthenticated user to query an administration endpoint under heavy load. This issue is patched in 9.2.4. There are no known workarounds.

CVSS3: 9.8

EPSS: Низкий

CVE-2022-39328

больше 2 лет назад

Grafana is an open-source platform for monitoring and observability. V ...

CVSS3: 9.8

EPSS: Низкий

GHSA-vqc4-mpj8-jxch

около 1 года назад

Grafana Race condition allowing privilege escalation

CVSS3: 9.8

EPSS: Низкий

ROS-20240404-01

около 1 года назад

Множественные уязвимости grafana

CVSS3: 9.4

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
BDU:2024-02627 Уязвимость платформы для мониторинга и наблюдения Grafana, связанная с параллельным выполнением с использованием общего ресурса с неправильной синхронизацией, позволяющая нарушителю повысить свои привилегии	CVSS3: 8.1	4% Низкий	больше 2 лет назад
CVE-2022-39328 Grafana is an open-source platform for monitoring and observability. Versions starting with 9.2.0 and less than 9.2.4 contain a race condition in the authentication middlewares logic which may allow an unauthenticated user to query an administration endpoint under heavy load. This issue is patched in 9.2.4. There are no known workarounds.	CVSS3: 9.8	4% Низкий	больше 2 лет назад
CVE-2022-39328 Grafana is an open-source platform for monitoring and observability. Versions starting with 9.2.0 and less than 9.2.4 contain a race condition in the authentication middlewares logic which may allow an unauthenticated user to query an administration endpoint under heavy load. This issue is patched in 9.2.4. There are no known workarounds.	CVSS3: 8.1	4% Низкий	больше 2 лет назад
CVE-2022-39328 Grafana is an open-source platform for monitoring and observability. Versions starting with 9.2.0 and less than 9.2.4 contain a race condition in the authentication middlewares logic which may allow an unauthenticated user to query an administration endpoint under heavy load. This issue is patched in 9.2.4. There are no known workarounds.	CVSS3: 9.8	4% Низкий	больше 2 лет назад
CVE-2022-39328 Grafana is an open-source platform for monitoring and observability. V ...	CVSS3: 9.8	4% Низкий	больше 2 лет назад
GHSA-vqc4-mpj8-jxch Grafana Race condition allowing privilege escalation	CVSS3: 9.8	4% Низкий	около 1 года назад
ROS-20240404-01 Множественные уязвимости grafana	CVSS3: 9.4		около 1 года назад

Уязвимостей на страницу