CVE-2025-4123
- Source
- https://cve.org/CVERecord?id=CVE-2025-4123
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-4123.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2025-4123
- Aliases
- Downstream
- Related
- Published
- 2025-05-22T08:15:52.720Z
- Modified
- 2026-05-19T06:44:23.108086907Z
- Severity
-
- 6.1 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N CVSS Calculator
- Summary
- [none]
- Details
-
A cross-site scripting (XSS) vulnerability exists in Grafana caused by combining a client path traversal and open redirect. This allows attackers to redirect users to a website that hosts a frontend plugin that will execute arbitrary JavaScript. This vulnerability does not require editor permissions and if anonymous access is enabled, the XSS will work. If the Grafana Image Renderer plugin is installed, it is possible to exploit the open redirect to achieve a full read SSRF.
The default Content-Security-Policy (CSP) in Grafana will block the XSS though the
connect-srcdirective. - References
Affected packages
Git / github.com/grafana/grafana
Affected ranges
- Type
- GIT
- Repo
- https://github.com/grafana/grafana
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedFixedIntroducedFixedIntroducedFixedIntroducedFixedIntroducedFixedIntroducedFixedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affected
- Database specific
{ "versions": [ { "introduced": "0" }, { "fixed": "10.4.18" }, { "introduced": "11.2.0" }, { "fixed": "11.2.9" }, { "introduced": "11.3.0" }, { "fixed": "11.3.6" }, { "introduced": "11.4.0" }, { "fixed": "11.4.4" }, { "introduced": "11.5.0" }, { "fixed": "11.5.4" }, { "introduced": "11.6.0" }, { "fixed": "11.6.1" }, { "introduced": "0" }, { "last_affected": "10.4.18-NA" }, { "introduced": "0" }, { "last_affected": "11.2.9-NA" }, { "introduced": "0" }, { "last_affected": "11.3.6-NA" }, { "introduced": "0" }, { "last_affected": "11.4.4-NA" }, { "introduced": "0" }, { "last_affected": "11.5.4-NA" }, { "introduced": "0" }, { "last_affected": "11.6.1-NA" }, { "introduced": "0" }, { "last_affected": "12.0.0-NA" } ] }
Affected versions
pkg/promlib/v0.*
pkg/promlib/v0.0.1
pkg/promlib/v0.0.2
pkg/promlib/v0.0.3
pkg/promlib/v0.0.4
pkg/promlib/v0.0.5
pkg/promlib/v0.0.6
pkg/promlib/v0.0.7
pkg/promlib/v0.0.8
pkg/util/xorm/v0.*
pkg/util/xorm/v0.0.1
v0.*
v0.0.0-cloud
v0.0.1-test
v1.*
v1.0.1
v1.0.2
v1.0.3
v1.0.4
v1.1.0
v1.2.0
v1.3.0
v1.4.0
v1.5.0
v1.5.1
v1.5.2
v1.5.3
v1.5.4
v1.6.0
v1.6.1
v1.7.0-rc1
v1.9.0
v1.9.0-rc1
v1.9.1
v10.*
v10.0.0-preview
v10.4.1
v10.4.11
v10.4.13
v10.4.14
v10.4.18
v10.4.2
v10.4.3
v10.4.4
v10.4.5
v10.4.6
v10.4.8
v11.*
v11.2.3
v11.2.4
v11.2.5
v11.2.8
v11.2.9
v11.3.1
v11.3.2
v11.3.6
v11.4.0
v11.4.4
v11.5.4
v11.6.0
v11.6.1
v12.*
v12.0.0
v2.*
v2.0.0-beta1
v2.0.0-beta3
v2.0.1
v2.0.2
v2.5.0
v2.6.0
v2.6.0-beta1
v3.*
v3.0.0-beta6
v3.0.0-beta7
v3.0.1
v3.0.2
v3.1.0-beta1
v3.2.1-test
v4.*
v4.4.0
v4.5.0
v4.5.0-beta1
v4.6.0-beta1
v5.*
v5.,2.4
v5.0.0
v5.0.0-beta1
v5.0.0-beta2
v5.0.0-beta3
v5.0.0-beta4
v5.0.0-beta5
v6.*
v6.0.0-beta1
v6.5
v8.*
v8.3.3
v8.4.0-beta1
v8.5.16
v9.*
v9.3.0-beta1