VDB
CVE-2024-8118
CVE-2024-8118
PUBLISHED
In Grafana, the wrong permission is applied to the alert rule write API endpoint, allowing users with permission to write external alert instances to also write alert rules.
EPSS 0.10% · 27.5th percentile
Risk Scores
EPSS Score
0.10%
27.5th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Bitnami | grafana | 8.5.0, 11.0.0 |
| Bitnami | grafana | 11.0.0, 8.5.0 |
Exploit Intelligence
- Berikut untuk POC grafana CVE-2024-8118 (github-poc-repo)
- Berikut untuk POC grafana CVE-2024-8118 (github-poc-repo)
- Berikut untuk POC grafana CVE-2024-8118 (github-poc-repo)
- Berikut untuk POC grafana CVE-2024-8118 (github-poc-repo)
- Berikut untuk POC grafana CVE-2024-8118 (github-poc-repo)
- Berikut untuk POC grafana CVE-2024-8118 (github-poc-repo)
- Berikut untuk POC grafana CVE-2024-8118 (github-poc-repo)
- Berikut untuk POC grafana CVE-2024-8118 (github-poc-repo)
- Berikut untuk POC grafana CVE-2024-8118 (github-poc)
- Berikut untuk POC grafana CVE-2024-8118 (github-poc)
…and 8 more exploits
Timeline
- Sep 26, 2024 CVE Published
- Sep 26, 2024 PoC Published
- Sep 27, 2024 EPSS Score
- Oct 5, 2024 Coalition ESS Score
- Oct 16, 2024 EPSS Score
- Nov 5, 2024 EPSS Score
- Nov 24, 2024 EPSS Score
- Dec 14, 2024 EPSS Score
- Jan 2, 2025 EPSS Score
- Jan 22, 2025 EPSS Score
- Feb 10, 2025 EPSS Score
- Feb 13, 2025 CVE Updated