Published: 21/03/2022 Updated: 13/05/2022

CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10

CVSS v3 Base Score: 9.8 | Impact Score: 5.9 | Exploitability Score: 3.9

VMScore: 668

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

An issue exists in Grafana up to and including 7.3.4, when integrated with Zabbix. The Zabbix password can be found in the api_jsonrpc.php HTML source code. When the user logs in and allows the user to register, one can right click to view the source code and use Ctrl-F to search for password in api_jsonrpc.php to discover the Zabbix account password and URL address.

Vulnerable Product	Search on Vulmon	Subscribe to Product
grafana grafana
redhat ceph storage 3.0
redhat storage 3.0
redhat ceph storage 4.0
redhat ceph storage 5.0

Synopsis Important: Red Hat Ceph Storage 61 Container security and bug fix update Type/Severity Security Advisory: Important Topic A new container image for Red Hat Ceph Storage 61 is now available in the Red Hat Ecosystem CatalogRed Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability ...

An issue was discovered in Grafana through 734, when integrated with Zabbix The Zabbix password can be found in the api_jsonrpcphp HTML source code When the user logs in and allows the user to register, one can right click to view the source code and use Ctrl-F to search for password in api_jsonrpcphp to discover the Zabbix account password a ...

Check Point Reference: CPAI-2022-2026 Date Published: 6 Mar 2024 Severity: Critical ...

CWE-312 https://2k8.org/post-319.html https://security.netapp.com/advisory/ntap-20220425-0005/https://access.redhat.com/errata/RHSA-2023:3642 https://nvd.nist.gov

CVE-2022-26148

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect