CVE-2024-9476

Sažetak

A vulnerability in Grafana Labs Grafana OSS and Enterprise allows Privilege Escalation allows users to gain access to resources from other organizations within the same Grafana instance via the Grafana Cloud Migration Assistant.This vulnerability will only affect users who utilize the Organizations feature to isolate resources on their Grafana instance.

Reference

https://grafana.com/blog/2024/11/12/grafana-security-release-medium-severity-security-fix-for-cve-2024-9476/
https://grafana.com/security/security-advisories/cve-2024-9476/

CVSS

Base:	0.0
Impact:	0.0
Exploitability:	0.6

Pristup

Vektor	Složenost	Autentikacija
LOCAL	LOW	HIGH

Impact

Povjerljivost	Cjelovitost	Dostupnost
NONE	NONE	NONE

CVSS vektor

CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:N/I:N/A:N

Zadnje važnije ažuriranje

14-11-2024 - 16:35

Objavljeno

13-11-2024 - 17:15