Vulnerabilities (CVE)

Filtered by vendor Grafana Subscribe
Filtered by product Oncall
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2024-5526 1 Grafana 1 Oncall 2024-06-11 N/A 9.1 CRITICAL
Grafana OnCall is an easy-to-use on-call management tool that will help reduce toil in on-call management through simpler workflows and interfaces that are tailored specifically for engineers. Grafana OnCall, from version 1.1.37 before 1.5.2 are vulnerable to a Server Side Request Forgery (SSRF) vulnerability in the webhook functionallity. This issue was fixed in version 1.5.2