Home
Blog
Unauthorized access to arbitrary endpoints in Grafana codebase
CVE-2022-39328

Unauthorized access to arbitrary endpoints in Grafana codebase <br /> CVE-2022-39328

Unauthorized access to arbitrary endpoints in Grafana codebase
CVE-2022-39328

Feb 27, 2023

Jonathan Kaftzan
VP Marketing & Business Development

Nov 11, 2022 – Grafana Labs published a security advisory for a new critical vulnerability in its open-source product. The vulnerability, marked as CVE-2022-39328, enables attackers to bypass authorization on arbitrary service endpoints.

What it takes to do Cloud Detection & Response

A guest post by James Berthoty the founder of Latio Tech. The shift to cloud...

James Berthoty

Founder, Latio Tech

Apr 8, 2024

Seccomp internals deep dive – Part 1

Seccomp, short for Secure Computing Mode, is a noteworthy tool offered by the Linux kernel....

Amit Schendel

Security Researcher

Apr 3, 2024

Yet another reason why the xz backdoor is a sneaky b@$tard

(We are talking about the xz/libzma backdoor identified with CVE-2024-3094) Background If you just woke...

Ben Hirschberg

CTO & Co-founder

Unauthorized access to arbitrary endpoints in Grafana codebase
CVE-2022-39328

Share

Related Articles

What it takes to do Cloud Detection & Response

Seccomp internals deep dive – Part 1

Yet another reason why the xz backdoor is a sneaky b@$tard

Company

ARMO Platfrom

Kubernetes Security Resources

Unauthorized access to arbitrary endpoints in Grafana codebase CVE-2022-39328

Share

Related Articles

What it takes to do Cloud Detection & Response

Seccomp internals deep dive – Part 1

Yet another reason why the xz backdoor is a sneaky b@$tard

Company

ARMO Platfrom

Kubernetes Security Resources

Unauthorized access to arbitrary endpoints in Grafana codebase
CVE-2022-39328