CVE-2023-4457
CVSS 3.1 Score 7.5 of 10 (high)
Details
Published Oct 16, 2023
Updated: Oct 20, 2023
CWE ID 209
Summary
CVE-2023-4457 is a vulnerability affecting versions 0.9.0 to 1.2.2 of the Google Sheets data source plugin for Grafana. This open-source platform for monitoring and observability unintentionally disclosed sensitive information due to the plugin's failure to sanitize error messages. As a result, the Google Sheet API-key configured for the data source could potentially be exposed. This issue was rectified in version 1.2.2.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share