CNNVD-202507-2419 Information

Jul 18, 2025 cve

CNNVD ID

CNNVD-202507-2419

CVE-2025-6023

CNNVD Published: 2025-07-18

Description (Chinese)

Grafana OSS是Grafana开源的一个可视化仪表盘。 Grafana OSS 11.5.0版本存在安全漏洞，该漏洞源于开放重定向，可能导致跨站脚本攻击。

Description (English)

Grafana OSS is a visualized dashboard of the Grafana Open Source. There is a security gap in version 11.5.0 of the Grafana OSS, which stems from open re-direction and may lead to a cross-site script attack.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

Grafana

Published

2025-07-18

Last Modified

2026-02-24

References

https://grafana.com/security/security-advisories/cve-2025-6023/ https://grafana.com/blog/2025/07/17/grafana-security-release-medium-and-high-severity-fixes-for-cve-2025-6197-and-cve-2025-6023/ https://access.redhat.com/security/cve/cve-2025-6023 https://vigilance.fr/vulnerability/Grafana-Cross-Site-Scripting-dated-18-07-2025-47750

Patch

https://grafana.com/grafana/download?edition=oss

Share on: