CVE-2024-5526

N/A

Grafana OnCall is an easy-to-use on-call management tool that will help reduce toil in on-call management through simpler workflows and interfaces that are tailored specifically for engineers. Grafana OnCall, from version 1.1.37 before 1.5.2 are vulnerable to a Server Side Request Forgery (SSRF) vulnerability in the webhook functionallity. This issue was fixed in version 1.5.2

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N

服务端请求伪造(SSRF)

Grafana OnCall 安全漏洞

Grafana OnCall是Grafana开源的一款易于使用的待命管理工具。 Grafana OnCall存在安全漏洞，该漏洞源于存在服务器端请求伪造漏洞。

N/A

N/A