Main Vulnerability Database Vulnerabilities #VU14575

Authentication bypass in Grafana - CVE-2018-558213,CVE-2018-15727

Published: August 30, 2018 / Updated: April 22, 2020

Vulnerability identifier: #VU14575

CSH Severity: High

CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/U:Amber

CVE-ID: CVE-2018-558213,CVE-2018-15727

CWE-ID: CWE-287

Exploitation vector: Remote access

Exploit availability: Public exploit is available

Vendor: Grafana Labs

Affected software:
Grafana

Detailed vulnerability description

The vulnerability allows a remote attacker to bypass authentication.

The vulnerability exists due to the web application generates predictable cookie value for the "remember me" cookie that is based on the username of an LDAP or OAuth user. A remote non-authenticated attacker can bypass authentication process and gain unrestricted access to the web application.

Successful exploitation of the vulnerability requires knowledge of the username.

How to mitigate CVE-2018-558213,CVE-2018-15727

Update to version 4.6.4 or 5.2.3.

Sources

https://community.grafana.com/t/grafana-5-2-3-and-4-6-4-security-update/10050

Authentication bypass in Grafana - CVE-2018-558213,CVE-2018-15727

Detailed vulnerability description

How to mitigate CVE-2018-558213,CVE-2018-15727

Sources

Please verify you're human