vulnerability
FreeBSD: VID-1f8d5806-ac51-11e8-9cb6-10c37b4ac2ea (CVE-2018-558213): grafana -- LDAP and OAuth login vulnerability
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 8 | (AV:N/AC:L/Au:S/C:C/I:C/A:N) | Aug 31, 2018 | Dec 10, 2025 | Dec 10, 2025 |
Severity
8
CVSS
(AV:N/AC:L/Au:S/C:C/I:C/A:N)
Published
Aug 31, 2018
Added
Dec 10, 2025
Modified
Dec 10, 2025
Description
Grafana Labs reports: On the 20th of August at 1800 CEST we were contacted about a potential security issue with the “remember me” cookie Grafana sets upon login. The issue targeted users without a local Grafana password (LDAP & OAuth users) and enabled a potential attacker to generate a valid cookie knowing only a username. All installations which use the Grafana LDAP or OAuth authentication features must be upgraded as soon as possible. If you cannot upgrade, you should switch authentication mechanisms or put additional protections in front of Grafana such as a reverse proxy.
Solutions
freebsd-upgrade-package-grafana5freebsd-upgrade-package-grafana4freebsd-upgrade-package-grafana3freebsd-upgrade-package-grafana2
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.