CVE-2023-5123

Name of the Vulnerable Software and Affected Versions Grafana JSON datasource plugin (affected versions not specified)

Description The JSON datasource plugin for Grafana allows retrieving and processing JSON data from a remote endpoint. Due to inadequate sanitization of the dashboard-supplied path parameter, it is possible to include path traversal characters (../) and send requests to paths outside the configured sub-path. This means an editor can create a dashboard that issues queries with path traversal characters, causing the datasource to query arbitrary subpaths on the configured domain. In rare cases where the plugin is configured to point back at the Grafana instance itself, this issue can lead to privilege escalation as an administrator browsing a maliciously configured panel could be compelled to make requests to Grafana administrative API endpoints with their credentials.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.