Grafana is an open-source platform for monitoring and observability.
The Google Sheets data source plugin for Grafana, versions 0.9.0 to 1.2.2 are vulnerable to an information disclosure vulnerability.
The plugin did not properly sanitize error messages, making it potentially expose the Google Sheet API-key that is configured for the data source.
This vulnerability was fixed in version 1.2.2.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: GRAFANA
Published: 2023-10-16T09:45:46.131Z
Updated: 2024-09-16T16:38:55.837Z
Reserved: 2023-08-21T12:55:38.286Z
Link: CVE-2023-4457
Vulnrichment
Updated: 2024-08-02T07:31:05.355Z
NVD
Status : Modified
Published: 2023-10-16T10:15:12.057
Modified: 2024-11-21T08:35:12.207
Link: CVE-2023-4457
Redhat
No data.