{"vulnerability": "CVE-2021-43798", "sightings": [{"uuid": "b68b1e78-ff4e-451a-a2f9-cb698bd378b5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43798", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2021/CVE-2021-43798.yaml", "content": "", "creation_timestamp": "2023-04-27T09:58:59.000000Z"}, {"uuid": "a20f1818-b204-4c08-9089-a16f0e612c57", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43798", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2025-01-03)", "content": "", "creation_timestamp": "2025-01-03T00:00:00.000000Z"}, {"uuid": "3329a0d6-dc69-427c-b063-bdb89327a424", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43798", "type": "seen", "source": "The Shadowserver (honeypot/common-vulnerabilities) - (2025-01-29)", "content": "", "creation_timestamp": "2025-01-29T00:00:00.000000Z"}, {"uuid": "99c386c3-0a7f-4f10-ac52-0cc2199425d6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43798", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2025-01-29)", "content": "", "creation_timestamp": "2025-01-29T00:00:00.000000Z"}, {"uuid": "83674a19-6d4e-4ce9-94ba-38c733a7df54", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43798", "type": "seen", "source": "MISP/a1e796df-2ad8-4c8d-8b69-737a004e72dd", "content": "", "creation_timestamp": "2025-02-06T03:13:45.000000Z"}, {"uuid": "b1a5fcef-4f4a-4b34-b096-ac11f1868b12", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43798", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2025-01-28)", "content": "", "creation_timestamp": "2025-01-28T00:00:00.000000Z"}, {"uuid": "c3d82b93-522a-4dc7-88fd-e31e4157a8e3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43798", "type": "seen", "source": "The Shadowserver (honeypot/common-vulnerabilities) - (2025-01-28)", "content": "", "creation_timestamp": "2025-01-28T00:00:00.000000Z"}, {"uuid": "43deb223-ce19-465b-9327-c113c0dd45be", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43798", "type": "seen", "source": "The Shadowserver (honeypot/common-vulnerabilities) - (2025-02-15)", "content": "", "creation_timestamp": "2025-02-15T00:00:00.000000Z"}, {"uuid": "316c4ed4-3760-4b11-9ec8-f67859d75389", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43798", "type": "seen", "source": "The Shadowserver (honeypot/common-vulnerabilities) - (2025-02-09)", "content": "", "creation_timestamp": "2025-02-09T00:00:00.000000Z"}, {"uuid": "3038d4c5-74f5-45a5-a5de-702805c9a811", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43798", "type": "seen", "source": "MISP/a1e796df-2ad8-4c8d-8b69-737a004e72dd", "content": "", "creation_timestamp": "2025-02-23T04:10:41.000000Z"}, {"uuid": "b493e4ea-b0e2-424e-8650-a4e36796ea9c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43798", "type": "seen", "source": "The Shadowserver (honeypot/common-vulnerabilities) - (2025-02-14)", "content": "", "creation_timestamp": "2025-02-14T00:00:00.000000Z"}, {"uuid": "1b19940d-63be-41d7-8535-83d7d51b986e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43798", "type": "seen", "source": "https://bsky.app/profile/undercode.bsky.social/post/3m6lofcyx772o", "content": "", "creation_timestamp": "2025-11-27T05:50:21.518397Z"}, {"uuid": "d0b12970-3f99-42c8-ba78-e519eb02dc53", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43798", "type": "seen", "source": "https://gist.github.com/thib-ack/d56c4245fa746e20bd64734e26972185", "content": "", "creation_timestamp": "2025-07-16T08:32:00.000000Z"}, {"uuid": "d7bd884c-169e-42f3-800a-8f6e066d1735", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43798", "type": "seen", "source": "https://infosec.exchange/users/greynoise/statuses/115306706117466843", "content": "", "creation_timestamp": "2025-10-02T21:31:47.346737Z"}, {"uuid": "af66198f-5370-49c9-8da9-c7180ec413b4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43798", "type": "seen", "source": "https://bsky.app/profile/greynoise.io/post/3m2aiw63zrc2m", "content": "", "creation_timestamp": "2025-10-02T21:32:22.157337Z"}, {"uuid": "fa78b282-54e5-49ee-9f47-107d5a30019e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43798", "type": "seen", "source": "https://bsky.app/profile/greynoise.infosec.exchange.ap.brid.gy/post/3m2aivgua74d2", "content": "", "creation_timestamp": "2025-10-02T21:32:54.919821Z"}, {"uuid": "ebed8524-e533-4b4d-b24b-aed16dcd1662", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43798", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3m2cvfm4quly2", "content": "", "creation_timestamp": "2025-10-03T20:21:30.318338Z"}, {"uuid": "795825ac-ad86-40ca-a61b-eb5f434e42df", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43798", "type": "seen", "source": "https://feedsin.space/feed/CISAKevBot/items/4888120", "content": "", "creation_timestamp": "2025-10-09T18:48:07.530244Z"}, {"uuid": "da9366c3-8446-4e26-b387-d716ec370735", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43798", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2025-10-23)", "content": "", "creation_timestamp": "2025-10-23T00:00:00.000000Z"}, {"uuid": "3315cabb-e9ce-408c-bff3-d2233323b97b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2021-43798", "type": "seen", "source": "https://bsky.app/profile/cyberveille-ch.bsky.social/post/3m2czbremjo27", "content": "", "creation_timestamp": "2025-10-03T21:30:28.439163Z"}, {"uuid": "eb5a70a5-b393-4746-877e-e0fc9e41552d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43798", "type": "seen", "source": "MISP/3c19819c-1dac-4ef2-bfed-be5efa7e0123", "content": "", "creation_timestamp": "2025-10-09T18:10:02.000000Z"}, {"uuid": "09b6bc32-b567-4773-aa0d-e9251468ae2a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43798", "type": "seen", "source": "MISP/3c19819c-1dac-4ef2-bfed-be5efa7e0123", "content": "", "creation_timestamp": "2025-10-10T04:31:01.000000Z"}, {"uuid": "0fe529b9-0356-4f19-873a-cfdd69006625", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2021-43798", "type": "seen", "source": "https://bsky.app/profile/ahmandonk.bsky.social/post/3m2hdhw6ejy23", "content": "", "creation_timestamp": "2025-10-05T14:43:31.599629Z"}, {"uuid": "b39e9e61-337c-42af-883d-98a40b6a03f5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43798", "type": "seen", "source": "https://gist.github.com/Darkcrai86/f39004c652863d9550059e15fab44cf2", "content": "", "creation_timestamp": "2026-01-02T08:15:23.000000Z"}, {"uuid": "efa4f1ba-7a69-4476-8589-1e9e0335f3b9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2021-43798", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3m32oggdrkb2n", "content": "", "creation_timestamp": "2025-10-13T07:20:08.278387Z"}, {"uuid": "16d318f8-ecdf-4d2e-8878-b6be1de959aa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43798", "type": "seen", "source": "https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/scanner/http/grafana_plugin_traversal.rb", "content": "", "creation_timestamp": "2021-12-20T16:13:40.000000Z"}, {"uuid": "374aa36a-b900-44b7-932d-576e721173ea", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43798", "type": "seen", "source": "https://gist.github.com/Darkcrai86/63335052d36e898b9b5c56f11b53b115", "content": "", "creation_timestamp": "2025-11-18T08:32:03.000000Z"}, {"uuid": "3b06d944-90e6-4f80-acf1-a431a6a3fa74", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2021-43798", "type": "seen", "source": "https://www.kyberturvallisuuskeskus.fi/fi/haavoittuvuus_37/2021", "content": "", "creation_timestamp": "2021-12-08T11:56:13.000000Z"}, {"uuid": "87363472-23e0-4cfd-8edd-204d40d0df54", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43798", "type": "seen", "source": "https://gist.github.com/epappas/bc55d25e0ca495ef04a5ef5e6a9c8c16", "content": "", "creation_timestamp": "2026-01-31T20:58:58.000000Z"}, {"uuid": "5ca7f3aa-9ee7-4884-86a0-dab57d88f2e2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "af0120d0-3dac-4a6a-974b-a9f33d2a9846", "vulnerability": "CVE-2021-43798", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/33171cb8-b7c2-4930-b136-606514a936cd", "content": "", "creation_timestamp": "2026-02-02T12:25:49.581368Z"}, {"uuid": "ccf31680-d403-4138-972a-19f97961d82a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43798", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/951", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1aCVE-2021\n\u63cf\u8ff0\uff1aThis is a proof-of-concept exploit for Grafana's Unauthorized Arbitrary File Read Vulnerability (CVE-2021-43798).\nURL\uff1ahttps://github.com/pedrohavay/exploit-grafana-CVE-2021-43798", "creation_timestamp": "2021-12-11T18:50:46.000000Z"}, {"uuid": "cbd888af-6d9f-4524-8979-c2c6b4f4a253", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43798", "type": "published-proof-of-concept", "source": "Telegram/d2nvpcDbVGz-n6BBGwRPnVMe2tQ9uLMaRNEgq6Xpqa0nrTk", "content": "", "creation_timestamp": "2025-12-22T15:00:08.000000Z"}, {"uuid": "57c2793a-bb7d-492e-bce7-5ac836b528f1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43798", "type": "published-proof-of-concept", "source": "Telegram/HutSTIgnWKRslQI1nHEqCVKWuOFRo_54ehGM6dg1VV15iEI", "content": "", "creation_timestamp": "2025-11-28T03:00:08.000000Z"}, {"uuid": "af481d53-5718-4c81-89c0-84563ca8ce08", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43798", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/1420", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1aCVE-2021\n\u63cf\u8ff0\uff1agrafana CVE-2021-43798\u4efb\u610f\u6587\u4ef6\u8bfb\u53d6\u6f0f\u6d1ePOC\uff0c\u91c7\u7528\u591a\u63d2\u4ef6\u8f6e\u8bad\u68c0\u6d4b\u7684\u65b9\u6cd5\uff0c\u5141\u8bb8\u6307\u5b9a\u5355URL\u548c\u4ece\u6587\u4ef6\u4e2d\u8bfb\u53d6URL\nURL\uff1ahttps://github.com/j-jasson/CVE-2021-43798-grafana_fileread", "creation_timestamp": "2022-01-27T08:37:02.000000Z"}, {"uuid": "cdfc55ad-c9ce-4ad4-a68e-31f8de1c4c1e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43798", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/918", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1a\u6f0f\u6d1e\u5229\u7528\n\u63cf\u8ff0\uff1a\u5229\u7528grafan CVE-2021-43798\u4efb\u610f\u6587\u4ef6\u8bfb\u6f0f\u6d1e\uff0c\u81ea\u52a8\u63a2\u6d4b\u662f\u5426\u6709\u6f0f\u6d1e\u3001\u5b58\u5728\u7684plugin\u3001\u63d0\u53d6\u5bc6\u94a5\u3001\u89e3\u5bc6server\u7aefdb\u6587\u4ef6\uff0c\u5e76\u8f93\u51fadata_sourrce\u4fe1\u606f\u3002\nURL\uff1ahttps://github.com/A-D-Team/grafanaExp", "creation_timestamp": "2021-12-07T15:48:26.000000Z"}, {"uuid": "f631bfd9-67ad-4693-b268-bc90da79189b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43798", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/917", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1aCVE-2021\n\u63cf\u8ff0\uff1aCVE-2021-43798:grafana-file-read\uff0cGrafana \u4efb\u610f\u6587\u4ef6\u8bfb\u53d6\u6f0f\u6d1e\nURL\uff1ahttps://github.com/Mr-xn/CVE-2021-43798", "creation_timestamp": "2021-12-07T13:19:30.000000Z"}, {"uuid": "169989d9-7989-4a0a-8e26-e8a8121892a0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43798", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/919", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1a\u6f0f\u6d1e\u5229\u7528\n\u63cf\u8ff0\uff1a\u5229\u7528grafan CVE-2021-43798\u4efb\u610f\u6587\u4ef6\u8bfb\u6f0f\u6d1e\uff0c\u81ea\u52a8\u63a2\u6d4b\u662f\u5426\u6709\u6f0f\u6d1e\u3001\u5b58\u5728\u7684plugin\u3001\u63d0\u53d6\u5bc6\u94a5\u3001\u89e3\u5bc6server\u7aefdb\u6587\u4ef6\uff0c\u5e76\u8f93\u51fadata_sourrce\u4fe1\u606f\u3002\nURL\uff1ahttps://github.com/kenuosec/grafanaExp", "creation_timestamp": "2021-12-07T17:34:45.000000Z"}, {"uuid": "6c6892e8-ef90-43a1-8336-39be5b61907f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43798", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/1126", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1aCVE-2021\n\u63cf\u8ff0\uff1aCVE-2021-43798 Grafana \u4efb\u610f\u6587\u4ef6\u8bfb\u53d6\u6f0f\u6d1e POC+\u53c2\u6570\nURL\uff1ahttps://github.com/ScorpionsMAX/CVE-2021-43798-Grafana-POC", "creation_timestamp": "2021-12-17T03:05:25.000000Z"}, {"uuid": "050f6539-7ddc-48d4-a810-14b425da0935", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43798", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/1204", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1aCVE-2021\n\u63cf\u8ff0\uff1aCVE-2021-43798 is a vulnerability marked as High priority (CVSS 7.5) leading to arbitrary file read via installed plugins in Grafana application.\nURL\uff1ahttps://github.com/LongWayHomie/CVE-2021-43798", "creation_timestamp": "2021-12-22T00:29:23.000000Z"}, {"uuid": "88a1ef9a-d2e9-4aa6-959d-67ddb324e59f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43798", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/1130", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1aCVE-2021\n\u63cf\u8ff0\uff1aCVE-2021-43798 Grafana\u4efb\u610f\u6587\u4ef6\u8bfb\u53d6\nURL\uff1ahttps://github.com/k3rwin/CVE-2021-43798-Grafana-", "creation_timestamp": "2021-12-17T07:10:20.000000Z"}, {"uuid": "7b0bfd8b-1755-48db-ac86-80578d1cab06", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43798", "type": "published-proof-of-concept", "source": "https://github.com/google/tsunami-security-scanner-plugins/tree/master/community/detectors/grafana_arbitrary_file_reading_cve_2021_43798", "content": "", "creation_timestamp": "2021-12-09T01:18:23.000000Z"}, {"uuid": "d433084a-b410-4747-92ea-4d82e3c53a1a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43798", "type": "published-proof-of-concept", "source": "Telegram/D-E8nBWEsZ9yuVLvf6JvfO0JzWMlEthKUB_mEicKSsUta-I", "content": "", "creation_timestamp": "2026-01-09T03:00:06.000000Z"}, {"uuid": "87feee38-b042-48f4-a62f-54428e493c31", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43798", "type": "published-proof-of-concept", "source": "https://t.me/zema_notes/12", "content": "\u041d\u0435\u043c\u043d\u043e\u0433\u043e \"\u0443\u0441\u0442\u0430\u0440\u0435\u0432\u0448\u0430\u044f\" \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c Grafana \u043e\u0442 8.0.0 \u0434\u043e 8.3.0 (\u0432\u043a\u043b\u044e\u0447\u0438\u0442\u0435\u043b\u044c\u043d\u043e), \u043d\u043e \u0438\u043d\u043e\u0433\u0434\u0430 \u043f\u043e\u043f\u0430\u0434\u0430\u0435\u0442\u0441\u044f.\n\nGrafana directory travesal (CVE-2021-43798).  \n\n\u041d\u0430\u0433\u0440\u0443\u0437\u043a\u0443 \u043c\u043e\u0436\u043d\u043e \u043d\u0430\u0439\u0442\u0438 \u0432\u0435\u0437\u0434\u0435, \u043e\u0434\u043d\u0430\u043a\u043e, \u0435\u0441\u043b\u0438 \"\u0436\u0435\u0440\u0442\u0432\u0430\" \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u0442 NGINX, \u043d\u0430\u043c \u0431\u0443\u0434\u0435\u0442 \u0432\u044b\u0434\u0430\u0432\u0430\u0442\u044c\u0441\u044f 400 \u043e\u0448\u0438\u0431\u043a\u0430.\n\n\u0412\u043e\u0442 \u043a\u0430\u043a \u044d\u0442\u043e \u0440\u0435\u0448\u0430\u0435\u0442\u0441\u044f: [host]/public/plugins/welcome/#/../../../../../../../../../etc/passwd\n\n#\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 #Web #CVE #selfmade", "creation_timestamp": "2023-01-23T20:02:39.000000Z"}, {"uuid": "23ffb224-6495-47a7-bc64-eec6787946aa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43798", "type": "published-proof-of-concept", "source": "Telegram/HZgO0Gdz3Bpxk8yhupJqKYszyRl6gSlcMYv2rjAx8kC4AA", "content": "", "creation_timestamp": "2023-11-02T15:16:57.000000Z"}, {"uuid": "e3e634cd-a04a-45c1-8df3-c839727fa237", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43798", "type": "seen", "source": "https://t.me/netrunnerz/317", "content": "#\u0426\u0438\u043a\u043b\u0421\u0442\u0430\u0442\u0435\u0439_HTB\n\n[CVE-2021-43798 + RCE Consul | HTB Medium | Ambassador]\n\n\u0414\u043e\u0431\u0440\u043e\u0433\u043e \u0432\u0440\u0435\u043c\u0435\u043d\u0438 \u0441\u0443\u0442\u043e\u043a, \u0441\u0435\u0433\u043e\u0434\u043d\u044f \u043c\u044b \u0440\u0430\u0437\u0431\u0435\u0440\u0435\u043c \u043c\u0430\u0448\u0438\u043d\u0443 Ambassador \u043d\u0430 Hack The Box \u0441\u043e \u0441\u043b\u043e\u0436\u043d\u043e\u0441\u0442\u044c\u044e Medium.", "creation_timestamp": "2022-10-28T13:31:13.000000Z"}, {"uuid": "13c98488-ad42-48f9-a59a-a0075a6b5225", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43798", "type": "published-proof-of-concept", "source": "Telegram/3tWpMS3hffClZ7U7dw_NP4VHkMD6lYyOkQFf6wMvUPlPkwI", "content": "", "creation_timestamp": "2023-02-23T09:08:37.000000Z"}, {"uuid": "9ead88e3-9323-4552-932b-7bc486a65c4a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43798", "type": "published-proof-of-concept", "source": "Telegram/WXq4AiMGOj-NVni8Z2YvL28ZneqpnYqGf2FE9KxKLNELQcU", "content": "", "creation_timestamp": "2025-01-27T04:00:06.000000Z"}, {"uuid": "b958a3ac-aa6a-4286-8994-475920aac700", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43798", "type": "published-proof-of-concept", "source": "Telegram/67twd_R15VUq16yMlEuwbAtmM6iyy46zbchP9f9A-W8j9FM", "content": "", "creation_timestamp": "2025-02-12T16:00:08.000000Z"}, {"uuid": "81898135-eb82-45c3-9548-a94d3afc06a0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43798", "type": "published-proof-of-concept", "source": "Telegram/T87NT4XRwS9TigBtG1P_KxzZy7vXQSOVkQYaJCdYWls53w", "content": "", "creation_timestamp": "2021-12-08T13:58:09.000000Z"}, {"uuid": "ad4c9904-2b7a-4f23-9861-346538341d97", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43798", "type": "published-proof-of-concept", "source": "Telegram/pAhL0Y0-25WuKbTjtFnfR_Xs2-BuvkpahhgLLseEPoVFP08", "content": "", "creation_timestamp": "2025-04-28T05:00:06.000000Z"}, {"uuid": "e21b7eff-d62f-4241-be25-0d9afd5e526e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43798", "type": "published-proof-of-concept", "source": "https://t.me/breachdetector/15629", "content": "\u26a0 Detectada filtraci\u00f3n \u26a0\n{\n  \"site\": \"RaidForums\",\n  \"Threat Actor\": \"odnwol\",\n  \"Content\": \"POC for CVE-2021-43798\u201d,\n  \"Detection Date\": \u201c09 Dec 2021 10:55\u201d,\n  \"Type\": \"Data leak\"\n}\n\ud83d\udd39 Data Leak monitoring system\ud83d\udd39", "creation_timestamp": "2021-12-09T11:08:23.000000Z"}, {"uuid": "a03a5576-d8d5-4209-b3ee-b73888667f22", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43798", "type": "seen", "source": "https://t.me/breachdetector/15367", "content": "\u26a0 Detectada filtraci\u00f3n \u26a0\n{\n  \"site\": \"RaidForums\",\n  \"Threat Actor\": \"bot268296\",\n  \"Content\": \"[Removed] CVE-2021-43798\u201d,\n  \"Detection Date\": \u201c08 Dec 2021 13:35\u201d,\n  \"Type\": \"Data leak\"\n}\n\ud83d\udd39 Data Leak monitoring system\ud83d\udd39", "creation_timestamp": "2021-12-08T13:48:25.000000Z"}, {"uuid": "e2499dd0-f6e3-4cec-abc7-78cd94714226", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43798", "type": "seen", "source": "https://t.me/breachdetector/15335", "content": "\u26a0 Detectada filtraci\u00f3n \u26a0\n{\n  \"site\": \"RaidForums\",\n  \"Threat Actor\": \"bot268296\",\n  \"Content\": \"CVE-2021-43798\u201d,\n  \"Detection Date\": \u201c08 Dec 2021 11:53\u201d,\n  \"Type\": \"Data leak\"\n}\n\ud83d\udd39 Data Leak monitoring system\ud83d\udd39", "creation_timestamp": "2021-12-08T12:07:26.000000Z"}, {"uuid": "65556609-bc2a-4823-88ec-22a87ddd5939", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43798", "type": "published-proof-of-concept", "source": "Telegram/XjYP8JQdrelpTaCaWTcaLR-GA2eRVlsEugCsg2Ay2VBcPA", "content": "", "creation_timestamp": "2021-12-07T23:10:31.000000Z"}, {"uuid": "41de78c1-6d54-4617-9bb4-532ce53b0f3f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43798", "type": "seen", "source": "https://t.me/cibsecurity/33509", "content": "\u203c CVE-2021-43798 \u203c\n\nGrafana is an open-source platform for monitoring and observability. Grafana versions 8.0.0-beta1 through 8.3.0 (except for patched versions) iss vulnerable to directory traversal, allowing access to local files. The vulnerable URL path is: `/public/plugins//`, where is the plugin ID for any installed plugin. At no time has Grafana Cloud been vulnerable. Users are advised to upgrade to patched versions 8.0.7, 8.1.8, 8.2.7, or 8.3.1. The GitHub Security Advisory contains more information about vulnerable URL paths, mitigation, and the disclosure timeline.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-12-07T22:22:24.000000Z"}, {"uuid": "edf20b47-1b32-4552-8013-b8ddbb4a2d77", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43798", "type": "published-proof-of-concept", "source": "Telegram/PhUKuKjNCe2IZjzD9soOgXJnv4mfw2tVuQhstc1RELtasA", "content": "", "creation_timestamp": "2021-12-21T02:40:53.000000Z"}, {"uuid": "fae3fac6-6f03-44d1-aeac-541a3b76c661", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43798", "type": "published-proof-of-concept", "source": "https://t.me/BlueRedTeam/1516", "content": "#CVE-2021\nCVE-2021-43798 Grafana \u4efb\u610f\u6587\u4ef6\u8bfb\u53d6\u6f0f\u6d1e POC+\u53c2\u6570\n\nhttps://github.com/ScorpionsMAX/CVE-2021-43798-Grafana-POC\n\n@BlueRedTeam", "creation_timestamp": "2021-12-17T11:42:01.000000Z"}, {"uuid": "4289949c-6638-4b0e-b86e-67cf87983421", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43798", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/7802", "content": "#exploit\n1. CVE-2022-24942:\nHeap-based buffer overflow in Silicon Labs Gecko SDK\nhttps://bugprove.com/knowledge-hub/cve-2022-24942-heap-based-buffer-overflow-in-silicon-labs-gecko-sdk\n\n2. Assessing Potential Exploitation of Grafana's CVE-2021-43798 for Initial Access\nhttps://vulncheck.com/blog/grafana-cve-2021-43798", "creation_timestamp": "2023-02-22T11:03:01.000000Z"}, {"uuid": "982a42d1-3499-4cdd-85a2-53e43afca354", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43798", "type": "published-proof-of-concept", "source": "https://t.me/BlueRedTeam/1295", "content": "#exploit\n1. CVE-2021-43798:\nGrafana 8.x Path Traversal (Pre-Auth)\nhttps://github.com/taythebot/CVE-2021-43798\n]-> https://github.com/j-jasson/CVE-2021-43798-grafana_fileread\n\n2. VMware vCenter 7.0.2 unauth Arbitrary File Read\n+ SSRF + Reflected XSS\nhttps://github.com/l0ggg/VMware_vCenter\n\n@BlueRedTeam", "creation_timestamp": "2021-12-09T05:08:15.000000Z"}, {"uuid": "fb3e8dc0-20e1-4aef-91ae-faae98dc5613", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43798", "type": "seen", "source": "https://t.me/CyberSecurityTechnologies/5115", "content": "#Analytics\nTop 10 Most Used Vulns of the Month (Dec 1-31)\nCVE-2021-44228 - Apache Log4j2\nCVE-2021-45046 - Apache Log4j DoS\nCVE-2021-42278, CVE-2021-42287 - AD Domain Services EoP Vulnerability\nCVE-2021-44832 - Apache Log4j 2.17.0\nCVE-2021-45105 - DoS via Uncontrolled Recursion in Log4j Strsubstitutor\nCVE-2021-43798 - Grafana 8.x Path Traversal\nCVE-2021-44077 - PreAuth RCE in ManageEngine ServiceDesk Plus\nCVE-2021-4422 - Log4j vulnerability\nCVE-2021-44515 - Zoho ManageEngine Desktop Central Pre-auth RCE", "creation_timestamp": "2024-10-21T16:08:53.000000Z"}, {"uuid": "2adc1425-a285-4cfd-82e1-632ad3c11f49", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43798", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/4936", "content": "#exploit\n1. CVE-2021-43798:\nGrafana 8.x Path Traversal (Pre-Auth)\nhttps://github.com/taythebot/CVE-2021-43798\n]-> https://github.com/j-jasson/CVE-2021-43798-grafana_fileread\n\n2. VMware vCenter 7.0.2 unauth Arbitrary File Read\n+ SSRF + Reflected XSS\nhttps://github.com/l0ggg/VMware_vCenter", "creation_timestamp": "2021-12-09T11:00:42.000000Z"}]}