CVE-2019-19499 Information
Share on:
Feb 14, 2021
cve
Description
Grafana = 6.4.3 has an Arbitrary File Read vulnerability which could be exploited by an authenticated attacker that has privileges to modify the data source configurations.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Reference
https://security.netapp.com/advisory/ntap-20200918-0003/ https://swarm.ptsecurity.com/grafana-6-4-3-arbitrary-file-read/
Attack Complexity
LOW
Privileges Required
LOW
User Interaction Required
LOW
Scope
NONE
Confidentiality Impact
UNCHANGED
Integrity Impact
HIGH
Availability Impact
NONE
Base Score
NONE
Base Severity
6.5