Published: 27/07/2020 Updated: 10/02/2023

CVSS v2 Base Score: 3.5 | Impact Score: 2.9 | Exploitability Score: 6.8

CVSS v3 Base Score: 5.4 | Impact Score: 2.7 | Exploitability Score: 2.3

VMScore: 312

Vector: AV:N/AC:M/Au:S/C:N/I:P/A:N

Grafana up to and including 6.7.1 allows stored XSS due to insufficient input protection in the originalUrl field, which allows an malicious user to inject JavaScript code that will be executed after clicking on Open Original Dashboard after visiting the snapshot.

Vulnerable Product	Search on Vulmon	Subscribe to Product
grafana grafana
netapp e-series performance analyzer -

Synopsis Moderate: grafana security, bug fix, and enhancement update Type/Severity Security Advisory: Moderate Topic An update for grafana is now available for Red Hat Enterprise Linux 8Red Hat Product Security has rated this update as having a security impact of Moderate A Common Vulnerability Scoring Sy ...

Synopsis Moderate: OpenShift Container Platform 461 image security update Type/Severity Security Advisory: Moderate Topic An update is now available for Red Hat OpenShift Container Platform 46Red Hat Product Security has rated this update as having a security impact of Moderate A Common Vulnerability S ...

Multiple vulnerabilities have been found in Hitachi Ops Center Analyzer viewpoint CVE-2020-11110, CVE-2020-12245, CVE-2020-12458, CVE-2020-13379, CVE-2020-13430 Affected products and versions are listed below Please upgrade your version to the appropriate version ...

CWE-79 https://github.com/grafana/grafana/blob/master/CHANGELOG.md https://security.netapp.com/advisory/ntap-20200810-0002/https://nvd.nist.gov https://access.redhat.com/errata/RHSA-2020:4682 https://www.hitachi.co.jp/Prod/comp/soft1/global/security/info/vuls/hitachi-sec-2020-131/index.html

CVE-2020-11110

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect