Skip to main content

Enterprise Metrics

2 CVEs product

Monthly

CVE-2022-44643 HIGH PATCH This Week

A vulnerability in the label-based access control of Grafana Labs Grafana Enterprise Metrics allows an attacker more access than intended. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity.

Authentication Bypass Grafana Enterprise Metrics
NVD
CVSS 3.1
8.8
EPSS
0.5%
CVE-2021-31231 MEDIUM This Month

The Alertmanager in Grafana Enterprise Metrics before 1.2.1 and Metrics Enterprise 1.2.1 has a local file disclosure vulnerability when experimental.alertmanager.enable-api is used. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Grafana Information Disclosure Enterprise Metrics
NVD
CVSS 3.1
5.5
EPSS
0.3%
EPSS 0% CVSS 8.8
HIGH PATCH This Week

A vulnerability in the label-based access control of Grafana Labs Grafana Enterprise Metrics allows an attacker more access than intended. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity.

Authentication Bypass Grafana Enterprise Metrics
NVD
EPSS 0% CVSS 5.5
MEDIUM This Month

The Alertmanager in Grafana Enterprise Metrics before 1.2.1 and Metrics Enterprise 1.2.1 has a local file disclosure vulnerability when experimental.alertmanager.enable-api is used. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Grafana Information Disclosure Enterprise Metrics
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy