AVG-2250 log

Package loki
Status Fixed
Severity Medium
Type directory traversal
Affected 2.2.1-3
Fixed 2.3.0-1
Current 3.0.0-1 [extra]
Ticket None
Created Tue Aug 3 16:23:24 2021
Issue Severity Remote Type Description
CVE-2021-36156 Medium Yes Directory traversal 
An issue was discovered in Grafana Loki through 2.2.1. The header value X-Scope-OrgID is used to construct file paths for rules files, and if crafted to...
Date Advisory Package Type
10 Aug 2021 ASA-202108-12 loki directory traversal