Description
Due to a vulnerability in Grafana, an attacker can use it to perform a path traversal attack and access sensitive information on the server, which may lead to a takeover of the server.
Remediation
Upgrade to the latest version of Grafana
References
Related Vulnerabilities
Plone CMS Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2012-5491)
WordPress Plugin A2 Optimized WP Information Disclosure (2.0.10.8)
WordPress 6.2.x Multiple Vulnerabilities (6.2 - 6.2.2)
OpenSSL Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2014-3508)
WordPress Plugin WP AmASIN-The Amazon Affiliate Shop Directory Traversal (0.9.6)