CVE-2020-27846 vulnerability in Grafana Labs and Other Products
Published on December 21, 2020

A signature verification vulnerability exists in crewjam/saml. This flaw allows an attacker to bypass SAML Authentication. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability.

Github Repository Vendor Advisory Vendor Advisory NVD

Weakness Type

Misinterpretation of Input

The software misinterprets an input, whether from an attacker or another product, in a security-relevant fashion.

Products Associated with CVE-2020-27846

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2020-27846 are published in these products:

Grafana Labs Grafana

Red Hat Openshift Container Platform

Red Hat Openshift Service Mesh

Samlproject Saml

Fedora Project Fedora

Red Hat Enterprise Linux (RHEL)

Exploit Probability

EPSS

7.54%

Percentile

91.64%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2020-27846 vulnerability in Grafana Labs and Other ProductsPublished on December 21, 2020

Weakness Type

Misinterpretation of Input

Products Associated with CVE-2020-27846

Exploit Probability

CVE-2020-27846 vulnerability in Grafana Labs and Other Products
Published on December 21, 2020