CVE-2018-15727 in Grafana Labs and Red Hat Products
Published on August 29, 2018

Grafana 2.x, 3.x, and 4.x before 4.6.4 and 5.x before 5.2.3 allows authentication bypass because an attacker can generate a valid "remember me" cookie knowing only a username of an LDAP or OAuth user.

Vendor Advisory Vendor Advisory NVD

Products Associated with CVE-2018-15727

stack.watch emails you whenever new vulnerabilities are published in Grafana Labs Grafana or Red Hat Ceph Storage. Just hit a watch button to start following.

Grafana Labs Grafana

Red Hat Ceph Storage

Exploit Probability

EPSS

80.08%

Percentile

99.09%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2018-15727 in Grafana Labs and Red Hat ProductsPublished on August 29, 2018

Products Associated with CVE-2018-15727

Exploit Probability

CVE-2018-15727 in Grafana Labs and Red Hat Products
Published on August 29, 2018