One Article Review
| Source |  CVE Liste |
|---|---|
| Identifiant | 8307044 |
| Date de publication | 2023-02-03 22:15:09 (vue: 2023-02-04 00:08:48) |
| Titre | CVE-2022-23498 |
| Texte | Grafana is an open-source platform for monitoring and observability. When datasource query caching is enabled, Grafana caches all headers, including `grafana_session`. As a result, any user that queries a datasource where the caching is enabled can acquire another user’s session. To mitigate the vulnerability you can disable datasource query caching for all datasources. This issue has been patched in versions 9.2.10 and 9.3.4. |
| Notes | |
| Envoyé | Oui |
| Condensat | 2022 23498 `grafana acquire all another any been caches caching can cve datasource datasources disable enabled grafana has headers including issue mitigate monitoring observability open patched platform queries query result session session` source user userĂ¢€™s versions vulnerability when where |
| Tags | Vulnerability |
| Stories | |
| Move | 
|
L'article ne semble pas avoir été repris aprés sa publication.
L'article ne semble pas avoir été repris sur un précédent.