CVE-2020-12459

Published: 2020-04-29T16:15Z

Last Modified: 2024-11-21T04:59Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

In certain Red Hat packages for Grafana 6.x through 6.3.6, the configuration files /etc/grafana/grafana.ini and /etc/grafana/ldap.toml (which contain a secret_key and a bind_password) are world readable. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt