Main Vulnerability Database Vulnerabilities #VU14575

#VU14575 Authentication bypass in Grafana - CVE-2018-558213,CVE-2018-15727

Published: August 30, 2018 / Updated: April 22, 2020

Vulnerability identifier: #VU14575

Vulnerability risk: High

CVSSv4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/U:Amber

CVE-ID: CVE-2018-558213,CVE-2018-15727

CWE-ID: CWE-287

Exploitation vector: Remote access

Exploit availability: Public exploit is available

Vulnerable software:
Grafana

Software vendor:
Grafana Labs

Description

The vulnerability allows a remote attacker to bypass authentication.

The vulnerability exists due to the web application generates predictable cookie value for the "remember me" cookie that is based on the username of an LDAP or OAuth user. A remote non-authenticated attacker can bypass authentication process and gain unrestricted access to the web application.

Successful exploitation of the vulnerability requires knowledge of the username.

Remediation

Update to version 4.6.4 or 5.2.3.

External links

https://community.grafana.com/t/grafana-5-2-3-and-4-6-4-security-update/10050

#VU14575 Authentication bypass in Grafana - CVE-2018-558213,CVE-2018-15727

Description

Remediation

External links

Please verify you're human