COOEY // HUBcompliance · community · intelligence

Exposures › CVE-2021-39226

CVE-2021-39226

Severity
high · on CISA KEV actively exploited
Source
CISA-KEV · kev
Published
2022-08-25
Reference
https://nvd.nist.gov/vuln/detail/CVE-2021-39226
⌖ exploited in the wild shame 50/100 exploited-in-wild

Grafana contains an authentication bypass vulnerability that allows authenticated and unauthenticated users to view and delete all snapshot data, potentially resulting in complete snapshot data loss.

Players implicated

Grafana Labs · vendorGrafana Labs · product

Description

Grafana contains an authentication bypass vulnerability that allows authenticated and unauthenticated users to view and delete all snapshot data, potentially resulting in complete snapshot data loss.

Affected FedRAMP products 0 in the catalog

No correlated FedRAMP products.