ROS-20240403-01
Discription

A vulnerability in the column.title and cellLinkTooltip components of the Grafana web-based data presentation tool is related to insufficient protection of the web page structure. Exploitation of the vulnerability could allow an attacker acting remotely to escalate privileges A vulnerability in the Grafana monitoring and surveillance platform is related to the forwarding of the OAuth identifier of the last logged in user of the last logged in user. Exploitation of the vulnerability could allow an attacker, acting remotely to obtain sensitive data A vulnerability in the Grafana monitoring and surveillance platform is related to attacks from multiple sources against authenticated Grafana users with high privileges. Exploitation of the vulnerability could Allow an attacker acting remotely to escalate privileges A vulnerability in the mapValues() function of the Async service module for handling asynchronous JavaScript is related to improperly controlled modification of object prototype attributes. Exploitation of the vulnerability could allow an attacker acting remotely to escalate his privileges A vulnerability in the Grafana monitoring and surveillance platform is related to logging into Grafana via a customized OAuth IdP identifier, which provides a login name to take over the account management of a of another user. Exploitation of the vulnerability could allow an attacker acting remotely to have an impact data integrity Node.js follow-redirects module vulnerability is…Read More

Back to Main

Subscribe for the latest news: