CVE-2020-12245
published 2020-04-24CVE-2020-12245: Grafana before 6.7.3 allows table-panel XSS via column.title or cellLinkTooltip.
PriorityP426medium6.1CVSS 3.1
AVNACLPRNUIRSCCLILAN
EPSS
1.95%
77.7th percentile
Grafana before 6.7.3 allows table-panel XSS via column.title or cellLinkTooltip.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| github.com | grafana_grafana | >= 0 < 6.7.3 | 6.7.3 |
| grafana | grafana | < 6.7.3 | 6.7.3 |
CVSS provenance
nvdv3.16.1MEDIUMCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
nvdv2.04.3MEDIUMAV:N/AC:M/Au:N/C:N/I:P/A:N
osv6.1MEDIUM
vendor_redhat6.1MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Red Hat
grafana: XSS via column.title or cellLinkTooltip
vendor_redhat·2020-04-23·CVSS 6.1
CVE-2020-12245 [MEDIUM] CWE-79 grafana: XSS via column.title or cellLinkTooltip
grafana: XSS via column.title or cellLinkTooltip
Grafana before 6.7.3 allows table-panel XSS via column.title or cellLinkTooltip.
A flaw was found in grafana. A XSS is possible in table-panel via column.title or cellLinkTooltip.
Package: grafana (Red Hat Ceph Storage 2) - Out of support scope
Package: grafana (Red Hat Ceph Storage 3) - Will not fix
Package: grafana-container (Red Hat Ceph Storage 3) - Will not fix
Package: rhceph/rhceph-4-dashboard-rhel8 (Red Hat Ceph Storage 4) - Will not fix
Package: openshift3/grafana (Red Hat OpenShift Container Platform 3.11) - Will not fix
Package: grafana (Red Hat Storage 3) - Will not fix
OSV
Grafana XSS in header column rename in github.com/grafana/grafana
osv·2024-06-28
CVE-2020-12245 Grafana XSS in header column rename in github.com/grafana/grafana
Grafana XSS in header column rename in github.com/grafana/grafana
Grafana XSS in header column rename in github.com/grafana/grafana.
NOTE: The source advisory for this report contains additional versions that could not be automatically mapped to standard Go module versions.
(If this is causing false-positive reports from vulnerability scanners, please suggest an edit to the report.)
The additional affected modules and versions are: github.com/grafana/grafana before v6.7.3.
OSV
Grafana XSS in header column rename
osv·2022-05-24
CVE-2020-12245 [MEDIUM] Grafana XSS in header column rename
Grafana XSS in header column rename
Grafana before 6.7.3 allows table-panel XSS via column.title or cellLinkTooltip.
GHSA
Grafana XSS in header column rename
ghsa·2022-05-24
CVE-2020-12245 [MEDIUM] CWE-79 Grafana XSS in header column rename
Grafana XSS in header column rename
Grafana before 6.7.3 allows table-panel XSS via column.title or cellLinkTooltip.
OSV
CVE-2020-12245: Grafana before 6
osv·2020-04-24·CVSS 6.1
CVE-2020-12245 [MEDIUM] CVE-2020-12245: Grafana before 6
Grafana before 6.7.3 allows table-panel XSS via column.title or cellLinkTooltip.
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2020-12245 grafana: XSS via column.title or cellLinkTooltip
bugzilla·2020-06-18·CVSS 6.1
CVE-2020-12245 [MEDIUM] CVE-2020-12245 grafana: XSS via column.title or cellLinkTooltip
CVE-2020-12245 grafana: XSS via column.title or cellLinkTooltip
Grafana before 6.7.3 allows table-panel XSS via column.title or cellLinkTooltip.
References:
https://community.grafana.com/t/release-notes-v6-7-x/27119
https://github.com/grafana/grafana/blob/master/CHANGELOG.md#673-2020-04-23
https://github.com/grafana/grafana/pull/23816
Discussion:
Created grafana tracking bugs for this issue:
Affects: fedora-all [bug 1848644]
---
Keeping OpenShift and ServiceMesh at Moderate, as I feel even tho the components are behind OAuth a logged in user can still be tricked to perform XSS.
ServiceMesh packages a vulnerable version of grafana:
- ServiceMesh 1.0.x grafana v6.2.2
- ServiceMesh 1.1.x grafana v6.4.3
OpenShift packages a vulnerable version of grafana:
- OpenShift 3.11 grafana v5.4.
Bugzilla
CVE-2020-12245 grafana: XSS via column.title or cellLinkTooltip [fedora-all]
bugzilla·2020-06-18·CVSS 6.1
CVE-2020-12245 [MEDIUM] CVE-2020-12245 grafana: XSS via column.title or cellLinkTooltip [fedora-all]
CVE-2020-12245 grafana: XSS via column.title or cellLinkTooltip [fedora-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of fedora-all.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When submitting as an update, use the fedpkg template provided in the next
comment(s). This will include the bug IDs of this tracking bug as well as
the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
fedpkg commit message.
NOTE: this issue affects multiple supported versions
http://lists.opensuse.org/opensuse-security-announce/2020-06/msg00060.htmlhttp://lists.opensuse.org/opensuse-security-announce/2020-07/msg00083.htmlhttp://lists.opensuse.org/opensuse-security-announce/2020-10/msg00009.htmlhttp://lists.opensuse.org/opensuse-security-announce/2020-10/msg00017.htmlhttps://community.grafana.com/t/release-notes-v6-7-x/27119https://github.com/grafana/grafana/blob/master/CHANGELOG.md#673-2020-04-23https://github.com/grafana/grafana/pull/23816https://security.netapp.com/advisory/ntap-20200511-0001/http://lists.opensuse.org/opensuse-security-announce/2020-06/msg00060.htmlhttp://lists.opensuse.org/opensuse-security-announce/2020-07/msg00083.htmlhttp://lists.opensuse.org/opensuse-security-announce/2020-10/msg00009.htmlhttp://lists.opensuse.org/opensuse-security-announce/2020-10/msg00017.htmlhttps://community.grafana.com/t/release-notes-v6-7-x/27119https://github.com/grafana/grafana/blob/master/CHANGELOG.md#673-2020-04-23https://github.com/grafana/grafana/pull/23816https://security.netapp.com/advisory/ntap-20200511-0001/
2020-04-24
Published