CVE-2022-35957Authentication Bypass by Spoofing in Grafana

CWE-290Authentication Bypass by SpoofingCWE-288Authentication Bypass Using an Alternate Path or Channel7 documents5 sources
Severity
6.6MEDIUMNVD
EPSS
0.9%
top 24.59%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
GrafanaGithub.com Grafana GrafanaFedoraproject Fedora
Timeline
PublishedSep 20
Latest updateJun 5

Description

Grafana is an open-source platform for monitoring and observability. Versions prior to 9.1.6 and 8.5.13 are vulnerable to an escalation from admin to server admin when auth proxy is used, allowing an admin to take over the server admin account and gain full control of the grafana instance. All installations should be upgraded as soon as possible. As a workaround deactivate auth proxy following the instructions at: https://grafana.com/docs/grafana/latest/setup-grafana/configure-security/configure

CVSS vector

CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:HExploitability: 0.7 | Impact: 5.9

Affected Packages3 packages

CVEListV5grafana/grafana< 8.5.13+1
NVDgrafana/grafana9.0.09.0.9+2
Gogithub.com/grafana_grafana9.1.09.1.6+2

Also affects: Fedora 37

🔴Vulnerability Details

5
OSV
Grafana Escalation from admin to server admin when auth proxy is used in github.com/grafana/grafana2024-06-05
OSV
Grafana Escalation from admin to server admin when auth proxy is used2024-05-14
GHSA
Grafana Escalation from admin to server admin when auth proxy is used2024-05-14
OSV
CVE-2022-35957: Grafana is an open-source platform for monitoring and observability2022-09-20
CVEList
Authentication Bypass in Grafana via auth proxy allowing escalation from admin to server admin2022-09-20

📋Vendor Advisories

1
Red Hat
grafana: Escalation from admin to server admin when auth proxy is used2022-09-20
CVE-2022-35957 — Authentication Bypass by Spoofing | cvebase