CVE-2024-11741

Grafana is an open-source platform for monitoring and observability. The Grafana Alerting VictorOps integration was not properly protected and could be exposed to users with Viewer permission. Fixed in versions 11.5.0, 11.4.1, 11.3.3,  11.2.6, 11.1.11, 11.0.11 and 10.4.15
Configurations

No configuration.

History

09 May 2025, 20:15

Type Values Removed Values Added
Summary
  • (es) Grafana es una plataforma de código abierto para monitoreo y observación. La integración de Grafana Alerting con VictorOps no estaba protegida adecuadamente y podía quedar expuesta a usuarios con permiso de Visualizador. Corregido en las versiones 11.5.0, 11.4.1, 11.3.3, 11.2.6, 11.1.11, 11.0.11 y 10.4.15
References
  • () https://security.netapp.com/advisory/ntap-20250509-0006/ -

31 Jan 2025, 16:15

Type Values Removed Values Added
New CVE

Information

Published : 2025-01-31 16:15

Updated : 2025-05-09 20:15


NVD link : CVE-2024-11741

Mitre link : CVE-2024-11741

CVE.ORG link : CVE-2024-11741


JSON object : View

Products Affected

No product.

CWE
CWE-200

Exposure of Sensitive Information to an Unauthorized Actor