CNNVD-202509-1034 Information
CNNVD ID
CNNVD-202509-1034
Related CVE
- CNNVD Published: 2025-09-08
Description (Chinese)
Business Links Panel for Grafana是Volkov Labs开源的一个业务仪表盘面板软件。 Business Links Panel for Grafana 2.4.0之前版本存在安全漏洞,该漏洞源于权限提升,具有Editor权限的恶意参与者可以将其权限升级为Administrator并执行任意管理操作。
Description (English)
Business Links Panel for Grafana is an operating dashboard software for Volkov Labs. There was a security loophole in the previous version of Business Links Panel for Grafana 2.4.0, which stemmed from an increase in authority, which could be upgraded to Administrator by a malicious participant with Editor authority and an arbitrary management exercise.
Hazard Level
Low
Vulnerability Type
其他
Affected Vendor
Volkov Labs
Published
2025-09-08
Last Modified
2026-02-24
References
https://github.com/VolkovLabs/business-links/security/advisories/GHSA-93qj-gv4p-mf53 https://github.com/VolkovLabs/business-links/commit/9d203a6950de7860e11b25e4265ed8fe60082d7d https://access.redhat.com/security/cve/cve-2025-58746
Patch
https://github.com/VolkovLabs/business-links/releases
Share on: