Arbitrary File Read Vulnerability in Grafana <= 6.4.3

Arbitrary File Read Vulnerability in Grafana <= 6.4.3

CVE-2019-19499 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Grafana <= 6.4.3 has an Arbitrary File Read vulnerability, which could be exploited by an authenticated attacker that has privileges to modify the data source configurations.

Learn more about our Web Application Penetration Testing UK.