Vulnerability Database

Grafana Metrics Exposure

Grafana is an open source, metrics dashboard and graph editor for Graphite, Elasticsearch, OpenTSDB, Prometheus and InfluxDB. It allows users to view and monitor visualizations based on metrics stored in these systems.

Attackers can retrieve various system metrics, application paths and other useful information.

Solution

Ensure that the metrics endpoint is blocked or protected by enforcing authentication.

Suite

Free
  • Suitable For Non-commercial Use
  • Limited Features
  • Cloud Storage

Suite Pro

$9500person/month
  • Suitable For Commercial Use
  • Unlimited Features
  • Cloud Storage

Ultimate

Enterprise
  • All Tools, Services, and Plans
  • Suitable For Enterprises
  • Single Sign-On Integration
  • Single Tenant
  • Dedicated Support
  • Custom Integrations
  • Annual or Monthly, Fixed-cost Billing