/

Directory Security Advisories

Security Advisories

CGA-gwhm-vf25-64r7

Published

Last updated

https://images.chainguard.dev/security/CGA-gwhm-vf25-64r7

Package

grafana-11.2

Latest Update

Pending upstream fix

Aliases

Severity

6.1

Medium

CVSS V3

Summary

Bootstrap vulnerable to Cross-Site Scripting (XSS)

Description

In Bootstrap starting in version 2.3.0 and prior to 3.4.0, as well as 4.x before 4.1.2, XSS is possible in the collapse data-parent attribute.

References

Updates

Advisories are based on vulnerability information provided by Grype from Anchore. Learn how Chainguard creates security advisories.

Safe Source for Open Source™

Media Kit Contact Us

© 2024 Chainguard. All Rights Reserved.

Product

Chainguard Images

Why Chainguard

Container Image Security Vulnerability Remediation Compliance and Risk Mitigation Software Supply Chain Security AI/ML Security

Customers

Customer Stories Chainguard Love

Company

About Us Pricing Open Source Careers Newsroom Legal

Resources

Unchained Blog Events Trust Center Documentation