Description

Grafana OnCall is an easy-to-use on-call management tool that will help reduce toil in on-call management through simpler workflows and interfaces that are tailored specifically for engineers. Grafana OnCall, from version 1.1.37 before 1.5.2 are vulnerable to a Server Side Request Forgery (SSRF) vulnerability in the webhook functionallity. This issue was fixed in version 1.5.2

INFO

Published Date :

2024-06-05T11:21:06.740Z

Last Modified :

2024-08-01T21:18:05.358Z

Source :

GRAFANA
AFFECTED PRODUCTS

The following products are affected by CVE-2024-5526 vulnerability.

Vendors Products
Grafana
  • Oncall
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-5526.

URL Resource
https://grafana.com/security/security-advisories/cve-2024-5526/ cve-icon cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact