Security Advisory

CVE-2023-4399

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-10-17 07:09:03

Last updated 2025-02-13 17:13:32

Assigner GRAFANA

State PUBLISHED

Description

Grafana is an open-source platform for monitoring and observability. In Grafana Enterprise, Request security is a deny list that allows admins to configure Grafana in a way so that the instance doesn’t call specific hosts. However, the restriction can be bypassed used punycode encoding of the characters in the request address.

← Browse all CVEs View on cve.org ↗