Shodan
Vulnerabilities
Vulnerable Software
Grafana:  >> Grafana  >> 6.3.7  Security Vulnerabilities
CVE-2020-13430
Grafana before 7.0.0 allows tag value XSS via the OpenTSDB datasource.
CVSS Score
6.1
EPSS Score
0.015
Published
2020-05-24
CVE-2020-12458
An information-disclosure flaw was found in Grafana through 6.7.3. The database directory /var/lib/grafana and database file /var/lib/grafana/grafana.db are world readable. This can result in exposure of sensitive information (e.g., cleartext or encrypted datasource passwords).
CVSS Score
5.5
EPSS Score
0.004
Published
2020-04-29
CVE-2020-12052
Grafana version < 6.7.3 is vulnerable for annotation popup XSS.
CVSS Score
6.1
EPSS Score
0.013
Published
2020-04-27
CVE-2020-12245
Grafana before 6.7.3 allows table-panel XSS via column.title or cellLinkTooltip.
CVSS Score
6.1
EPSS Score
0.02
Published
2020-04-24


Products
Pricing
Contact Us

Shodan ® - All rights reserved