HomePentest-Tools.com Logo

Grafana 2.0.1 < 7.5.11, 8.x < 8.1.6 Snapshot Authentication Bypass Vulnerability (GHSA-69j6-29vr-p3j9) CVE-2021-39226

Severity
CVSSv3 Score
7.3
Vulnerability description

Grafana is prone to an authentication bypass vulnerability in the snapshot functionality.

Risk description

Unauthenticated and authenticated users are able to view the snapshot with the lowest database key by accessing the literal paths: /dashboard/snapshot/:key, or /api/snapshots/:key If the snapshot public_mode configuration setting is set to true (vs default of false), unauthenticated users are able to delete the snapshot with the lowest database key by accessing the literal path: /api/snapshots-delete/:deleteKey Regardless of the snapshot public_mode setting, authenticated users are able to delete the snapshot with the lowest database key by accessing the literal paths: /api/snapshots/:key, or /api/snapshots-delete/:deleteKey The combination of deletion and viewing enables a complete walk through all snapshot data while resulting in complete snapshot data loss.

Recommendation

Update to version 7.5.11, 8.1.6 or later.

Codename
Not available
Detectable with
Network Scanner
Scan engine
OpenVAS
Exploitable with Sniper
No
CVE Published
Oct 5, 2021
Detection added at
Software Type
Not available
Vendor
Not available
Product
Not available