CVE-2026-0713 in Incoming Goods Suiteinformación

Resumen

por MITRE • 2026-01-15

A security vulnerability in the /apis/dashboard.grafana.app/* endpoints allows authenticated users to bypass dashboard and folder permissions. The vulnerability affects all API versions (v0alpha1, v1alpha1, v2alpha1). Impact: - Viewers can view all dashboards/folders regardless of permissions - Editors can view/edit/delete all dashboards/folders regardless of permissions - Editors can create dashboards in any folder regardless of permissions - Anonymous users with viewer/editor roles are similarly affected Organization isolation boundaries remain intact. The vulnerability only affects dashboard access and does not grant access to datasources.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Responsable

SICK AG

Reservar

2026-01-08

Divulgación

2026-01-15

Moderación

revocado

Artículo

VDB-341276

CPE

listo

EPSS

0.00000

KEV

no

Actividades

muy bajo

Fuentes

MITREhttps://www.cve.org/CVERecord?id=CVE-2026-0713
NVDhttps://nvd.nist.gov/vuln/detail/CVE-2026-0713
CVE Detailshttps://www.cvedetails.com/cve/CVE-2026-0713/

AnteriorVisión De ConjuntoPróximo

Do you know our Splunk app?

Download it now for free!