ALT Linux Team

Package grafana update in sisyphus on 2020-08-19

ALT-PU-2020-2611-1

Package grafana updated to version 7.1.3-alt1 for branch sisyphus in task 256438.

Closed vulnerabilities

Published: 2020-10-28
Modified: 2024-11-21

CVE-2020-24303

Grafana before 7.1.0-beta 1 allows XSS via a query alias for the ElasticSearch datasource.

Severity: MEDIUM (6.1) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
References:
VKontakte | Telegram | YouTube | Forum | GitHub | Bugzilla
Version: 2.1.0
Back to top