RHSA-2020:4682
Advisory lineage Upstream: 8 Downstream: 0
Published: 18 Sept 2024, 04:15
Last modified:03 Mar 2026, 10:03
Vulnerability Summary
Overall Risk (default)
medium
26/100 CVSS Score
6.5 MEDIUM
3.1 (osv_red_hat)
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected
Timeline
18 Sept 2024, 04:15
Published
Vulnerability first disclosed
03 Mar 2026, 10:03
Last Modified
Vulnerability information updated
Description
Red Hat Security Advisory: grafana security, bug fix, and enhancement update
CVSS Metrics
- v3.1•MEDIUM•Score: 6.5CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Affected Systems
- redhat•grafana
< 0:6.7.4-3.el8
- redhat•grafana-azure-monitor
< 0:6.7.4-3.el8
- redhat•grafana-cloudwatch
< 0:6.7.4-3.el8
- redhat•grafana-debuginfo
< 0:6.7.4-3.el8
- redhat•grafana-elasticsearch
< 0:6.7.4-3.el8
- redhat•grafana-graphite
< 0:6.7.4-3.el8
- redhat•grafana-influxdb
< 0:6.7.4-3.el8
- redhat•grafana-loki
< 0:6.7.4-3.el8
- redhat•grafana-mssql
< 0:6.7.4-3.el8
- redhat•grafana-mysql
< 0:6.7.4-3.el8
- redhat•grafana-opentsdb
< 0:6.7.4-3.el8
- redhat•grafana-postgres
< 0:6.7.4-3.el8
- redhat•grafana-prometheus
< 0:6.7.4-3.el8
- redhat•grafana-stackdriver
< 0:6.7.4-3.el8
References (39)
- https://access.redhat.com/errata/RHSA-2020:4682
- https://access.redhat.com/security/updates/classification/#moderate
- https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/8.3_release_notes/
- https://bugzilla.redhat.com/show_bug.cgi?id=1807323
- https://bugzilla.redhat.com/show_bug.cgi?id=1827765
- https://bugzilla.redhat.com/show_bug.cgi?id=1829724
- https://bugzilla.redhat.com/show_bug.cgi?id=1848089
- https://bugzilla.redhat.com/show_bug.cgi?id=1848108
- https://bugzilla.redhat.com/show_bug.cgi?id=1848643
- https://bugzilla.redhat.com/show_bug.cgi?id=1850572
- https://bugzilla.redhat.com/show_bug.cgi?id=1861044
- https://bugzilla.redhat.com/show_bug.cgi?id=1873615
- https://security.access.redhat.com/data/csaf/v2/advisories/2020/rhsa-2020_4682.json
- https://access.redhat.com/security/cve/CVE-2018-18624
- https://www.cve.org/CVERecord?id=CVE-2018-18624
- https://nvd.nist.gov/vuln/detail/CVE-2018-18624
- https://security.netapp.com/advisory/ntap-20200608-0008/
- https://access.redhat.com/security/cve/CVE-2019-19499
- https://www.cve.org/CVERecord?id=CVE-2019-19499
- https://nvd.nist.gov/vuln/detail/CVE-2019-19499
- https://swarm.ptsecurity.com/grafana-6-4-3-arbitrary-file-read/
- https://access.redhat.com/security/cve/CVE-2020-11110
- https://www.cve.org/CVERecord?id=CVE-2020-11110
- https://nvd.nist.gov/vuln/detail/CVE-2020-11110
- https://access.redhat.com/security/cve/CVE-2020-12052
- https://www.cve.org/CVERecord?id=CVE-2020-12052
- https://nvd.nist.gov/vuln/detail/CVE-2020-12052
- https://access.redhat.com/security/cve/CVE-2020-12245
- https://www.cve.org/CVERecord?id=CVE-2020-12245
- https://nvd.nist.gov/vuln/detail/CVE-2020-12245
- https://access.redhat.com/security/cve/CVE-2020-12458
- https://www.cve.org/CVERecord?id=CVE-2020-12458
- https://nvd.nist.gov/vuln/detail/CVE-2020-12458
- https://access.redhat.com/security/cve/CVE-2020-12459
- https://www.cve.org/CVERecord?id=CVE-2020-12459
- https://nvd.nist.gov/vuln/detail/CVE-2020-12459
- https://access.redhat.com/security/cve/CVE-2020-13430
- https://www.cve.org/CVERecord?id=CVE-2020-13430
- https://nvd.nist.gov/vuln/detail/CVE-2020-13430