PT-2023-8918 · Grafana+5 · Grafana+5

Vtorosyan

Published

2022-12-07

Updated

2025-09-29

CVE-2022-39324

CVSS v3.1

6.7

Medium

Vector

AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:L

Name of the Vulnerable Software and Affected Versions Grafana versions prior to 8.5.16 and 9.2.8

Description The issue allows a malicious user to create a snapshot and arbitrarily choose the originalUrl parameter by editing the query, thanks to a web proxy. When another user opens the URL of the snapshot, they will be presented with the regular web interface delivered by the trusted Grafana server. The Open original dashboard button no longer points to the real original dashboard but to the attacker’s injected URL.

Recommendations For versions prior to 8.5.16, update to version 8.5.16 or later. For versions prior to 9.2.8, update to version 9.2.8 or later. As a temporary workaround, consider restricting access to the snapshot feature until a patch is available. Avoid using the originalUrl parameter in the affected API endpoint until the issue is resolved.

Exploit

Fix

XSS

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-79

Related Identifiers

ALSA-2023:6420

ALSA-2025_16880

ALT-PU-2022-3295

ALT-PU-2023-1161

ALT-PU-2023-4567

BDU:2024-02614

BIT-GRAFANA-2022-39324

CVE-2022-39324

ECHO-6874-979A-5ABB

GHSA-4724-7JWC-3FPW

GO-2024-2867

OESA-2025-1186

OESA-2025-1187

OESA-2025-1188

OESA-2025-1189

OPENSUSE-SU-2024:12659-1

RHSA-2023:6420

RHSA-2023_6420

SUSE-SU-2023:0811-1

SUSE-SU-2023:0812-1

SUSE-SU-2023:0821-1

SUSE-SU-2024:0191-1

SUSE-SU-2024:0196-1

Affected Products

Alt Linux

Almalinux

Grafana

Red Hat

Red Os

Suse

PT-2023-8918 · Grafana+5 · Grafana+5

CVE-2022-39324

Weakness Enumeration

Related Identifiers

Affected Products

References · 212