CVE-2021-43798

Grafana is an open-source platform for monitoring and observability. Grafana versions 8.0.0-beta1 through 8.3.0 (except for patched versions) iss vulnerable to directory traversal, allowing access to local files. The vulnerable URL path is: `/public/plugins//`, where is the plugin ID for any installed plugin. At no time has Grafana Cloud been vulnerable. Users are advised to upgrade to patched versions 8.0.7, 8.1.8, 8.2.7, or 8.3.1. The GitHub Security Advisory contains more information about vulnerable URL paths, mitigation, and the disclosure timeline.

Attack Vector (AV)	Network	Adjacent	Local	Physical
Attack Complexity (AC)	LOW	High
Privileges Required (PR)	None	Low	High
User Interaction (UI)	None	Required
Scope (S)	Unchange	Change
Confidentiality (C)	None	Low	High
Integrity (I)	None	Low	High
Availability (A)	None	Low	High

Attack Vector (AV)	Network	Adjacent	Local
Access Complexity (AC)	Low	Medium	High
Authentication (Au)	None	Single	Multiple
Confidentiality (C)	None	Parical	Complete
Integrity (I)	None	Partial	Complete
Availability (A)	None	Partial	Complete

NVD References

Refer to Information on External Sites

CVE Infomation	Exploits or more Infomation
mitre	EXPLOIT DATABASE
NVD	0day.today
vulmon.com	github
CVE Details	Twitter
JVN ENG JPN
Reconshell

List of frequently cited URLs

URL	Num of Times Referred to
https://alerts.vulmon.com/?utm_source=twitter&utm_medium=so...	154
https://lists.astaro.com/ASGV9-IPS-rules.html#0	19
https://grafana.com/blog/2021/12/07/grafana-8.3.1-8.2.7-8.1...	13
https://ift.tt/3IwHA4u	9
https://news.ycombinator.com/item?id=29491900	5
https://github.com/jas502n/Grafana-CVE-2021-43798	3
https://opsmtrs.com/33CTOVX	3
https://twitter.com/TomNomNom/status/1468521389623808002	3
https://vulncheck.com/blog/grafana-cve-2021-43798	3
https://www.cybrary.it/course/cve-series-grafana-directory-...	3
https://talosintelligence.com/vulnerability_reports/TALOS-2021	3
https://packetstormsecurity.com/files/165198/Grafana-CVE-20...	3
https://ipssignatures.appspot.com/?cve=CVE-2021-43798	3

▼ Show Information from Twitter(12)

User	URL	Info Source	Date
ksg93rd	https://vulncheck.com/blog/grafana-cve-2021-43798	Source ksg93rd 1628229164737130498	2023/02/22
cybersecmood	https://github.com/jas502n/Grafana-CVE-2021-43798	Source cybersecmood 1633803084487958530	2023/03/09
its_L_	https://vulncheck.com/blog/grafana-cve-2021-43798	Source its_L_ 1633838075913850882	2023/03/09
blueteamsec1	http://dlvr.it/SlQGkR	Source blueteamsec1 1639267966268104704	2023/03/24
blueteamsec1	https://twitter.com/blueteamsec1/status/1639267966268104704...	Source blueteamsec1 1639267966268104704	2023/03/24
cydefe	https://www.cybrary.it/course/cve-series-grafana-directory-...	Source cydefe 1641486325235720193	2023/03/31
TigermanRoot	https://vulncheck.com/blog/grafana-cve-2021-43798	Source TigermanRoot 1642398415119085570	2023/04/02
GobySec	https://github.com/gobysec/GobyVuls/blob/master/GobyVuls-Do...	Source GobySec 1644179978207252481	2023/04/07
GobySec	https://twitter.com/GobySec/status/1644179978207252481/video/1	Source GobySec 1644179978207252481	2023/04/07
fofabot	https://en.fofa.info/result?qbase64=YXBwPSJHcmFmYW5hX0xhYnM...	Source fofabot 1644188176012156930	2023/04/07
fofabot	https://twitter.com/GobySec/status/1644179978207252481	Source fofabot 1644188176012156930	2023/04/07
GobySec	https://twitter.com/fofabot/status/1644188176012156930	Source GobySec 1644272556990672898	2023/04/07

URL	Num of Times Referred to
alerts.vulmon.com	154
lists.astaro.com	19
grafana.com	13
ift.tt	9
news.ycombinator.com	5
github.com	3
opsmtrs.com	3
twitter.com	3
vulncheck.com	3
www.cybrary.it	3
talosintelligence.com	3
packetstormsecurity.com	3
ipssignatures.appspot.com	3

User	URL	Info Source
ksg93rd	vulncheck.com	Show Tweet
cybersecmood	github.com	Show Tweet
its_L_	vulncheck.com	Show Tweet
blueteamsec1	dlvr.it	Show Tweet
blueteamsec1	twitter.com	Show Tweet
cydefe	cybrary.it	Show Tweet
TigermanRoot	vulncheck.com	Show Tweet
GobySec	github.com	Show Tweet
GobySec	twitter.com	Show Tweet
fofabot	en.fofa.info	Show Tweet
fofabot	twitter.com	Show Tweet
GobySec	twitter.com	Show Tweet

Name	URL
jas502n/Grafana-CVE-2021-43798	https://github.com/jas502n/Grafana-CVE-2021-43798
Mr-xn/CVE-2021-43798	https://github.com/Mr-xn/CVE-2021-43798
zer0yu/CVE-2021-43798	https://github.com/zer0yu/CVE-2021-43798
A-D-Team/grafanaExp	https://github.com/A-D-Team/grafanaExp
taythebot/CVE-2021-43798	https://github.com/taythebot/CVE-2021-43798
ScorpionsMAX/CVE-2021-43798-Grafana-POC	https://github.com/ScorpionsMAX/CVE-2021-43798-Grafana-POC
z3n70/CVE-2021-43798	https://github.com/z3n70/CVE-2021-43798
asaotomo/CVE-2021-43798-Grafana-Exp	https://github.com/asaotomo/CVE-2021-43798-Grafana-Exp
j-jasson/CVE-2021-43798-grafana_fileread	https://github.com/j-jasson/CVE-2021-43798-grafana_fileread
pedrohavay/exploit-grafana-CVE-2021-43798	https://github.com/pedrohavay/exploit-grafana-CVE-2021-43798

GitHub Search Results: Up to 10

Name	URL
jas502n/Grafana-CVE-2021-43798	github.com
Mr-xn/CVE-2021-43798	github.com
zer0yu/CVE-2021-43798	github.com
A-D-Team/grafanaExp	github.com
taythebot/CVE-2021-43798	github.com
ScorpionsMAX/CVE-2021-43798-Grafana-POC	github.com
z3n70/CVE-2021-43798	github.com
asaotomo/CVE-2021-43798-Grafana-Exp	github.com
j-jasson/CVE-2021-43798-grafana_fileread	github.com
pedrohavay/exploit-grafana-CVE-2021-43798	github.com

CVE-2021-43798

Description from NVD

▼ CVSS3 Vec CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

▼ CVSS2 Vec AV:N/AC:L/Au:N/C:P/I:N/A:N

NVD References

Refer to Information on External Sites

▼ Show Information from Twitter(12)

▼ Show Information from Twitter(12)