Unsecured Grafana instance on https://monitoring.prow-canary.k8s.io/dashboards

Disclosed: 2021-01-07 18:32:43 By zevfw5pp To kubernetes

High

Vulnerability Details

Hi, I was looking at https://monitoring.prow-canary.k8s.io Grafana webapp. I'm not sure if it is for demo purposes, but I can access the main dashboard and view all graphs. `https://monitoring.prow-canary.k8s.io/dashboards` If indeed it is for demo purposes, please let me close the report myself. looking forward to hearing from you Thank you ## Impact access charts on various server resource usage.

Actions

View on HackerOne

Report Stats

Report ID: 1000922
State: Closed
Substate: duplicate
Upvotes: 2

Unsecured Grafana instance on https://monitoring.prow-canary.k8s.io/dashboards

Vulnerability Details

Actions

Report Stats

Share this report