Description
Grafana has an authentication bypass vulnerability. An attacker can view without authentication the Grafana's snapshot associated with the lowest database key .
Remediation
Upgrade to the latest version of Grafana
References
Related Vulnerabilities
Sqlite Out-of-bounds Write Vulnerability (CVE-2020-15358)
Joomla Improper Input Validation Vulnerability (CVE-2018-11321)
Oracle Database Server Other Vulnerability (CVE-2006-3700)
Jboss EAP Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2019-9515)
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-0793)