diff --git a/security/vuxml/vuln-2021.xml b/security/vuxml/vuln-2021.xml --- a/security/vuxml/vuln-2021.xml +++ b/security/vuxml/vuln-2021.xml @@ -1,3 +1,47 @@ + + Grafana -- Snapshot authentication bypass + + + grafana8 + grafana7 + grafana6 + grafana + 8.0.08.1.6 + 2.0.17.5.11 + + + + +

Grafana Labs reports:

+
+

Unauthenticated and authenticated users are able to view the snapshot with the lowest database key by accessing the literal paths:

+
    +
  • /dashboard/snapshot/:key, or
    • +
  • /api/snapshots/:key
    • +
+

If the snapshot "public_mode" configuration setting is set to true (vs default of false), unauthenticated users are able to delete the snapshot with the lowest database key by accessing the literal path:

+
    +
  • /api/snapshots-delete/:deleteKey
    • +
+

Regardless of the snapshot "public_mode" setting, authenticated users are able to delete the snapshot with the lowest database key by accessing the literal paths:

+
    +
  • /api/snapshots/:key, or
    • +
  • /api/snapshots-delete/:deleteKey
    • +
+

The combination of deletion and viewing enables a complete walk through all snapshot data while resulting in complete snapshot data loss.

+
+ + + + CVE-2021-39226 + https://grafana.com/blog/2021/10/05/grafana-7.5.11-and-8.1.6-released-with-critical-security-fix/ + + + 2021-09-15 + 2021-10-06 + + + minio -- policy restriction issue