Grafana Vulnerabilities
Grafana Grafana vulnerabilities.
Vulnerability Published:
๐๏ธ Published
- Anytime
Sort By:
๐๏ธ Published Date
- Descending
Authorization Bypass in Grafana's Datasource Proxy API
CVE-2025-3454GrafanaGrafana5MEDIUMAuthentication Flaw in Grafana Affecting User Permissions
CVE-2025-3260GrafanaGrafana8.3HIGHAccess Control Flaw in Grafana OSS Affects Organizational Administrators
CVE-2025-3580GrafanaGrafana5.5MEDIUMCross-Site Scripting Vulnerability in Grafana by Grafana Labs
CVE-2025-4123GrafanaGrafana๐๐พ๐ก๐ฐ7.6HIGHDOM XSS Vulnerability in XY Chart Plugin by Grafana
CVE-2025-2703GrafanaGrafana6.8MEDIUMExposure in Grafana Alerting VictorOps Integration Affects Users with Viewer Permission
CVE-2024-11741GrafanaGrafana4.3MEDIUMUnauthorized Invite Deletion in Grafana by Admins
CVE-2024-10452GrafanaGrafana2.7LOWGrafana SQL Expressions Vulnerability: Command Injection and Local File Inclusion Risks
CVE-2024-9264GrafanaGrafana๐ฅ๐๐พ๐กEPSS 92%๐ฐ9.4CRITICALWrong Permission in Grafana's Alert Rule Write API Endpoint Allows Unauthorized Rule Writing
CVE-2024-8118GrafanaGrafana๐พ๐ฐGrafana Plugin SDK Includes Build Metadata and Credentials in Binaries
CVE-2024-8986Grafana-plugin-sd...Grafana Plugin SdkGrafana Vulnerability: Unauthorized Snapshot Deletion via DELETE Request
CVE-2024-1313GrafanaGrafana6.5MEDIUMGranting Unrestricted Access to Data Sources Through UID
CVE-2024-1442GrafanaGrafana8.8HIGHGrafana CSV Datasource Plugin Vulnerability
CVE-2023-5122GrafanaGrafana-csv-datasource5.3MEDIUMGrafana JSON datasource plugin vulnerability
CVE-2023-5123GrafanaGrafana-json-datasource8HIGHEmail Verification Bypassed in Profile Settings
CVE-2023-6152GrafanaGrafana5.4MEDIUMRequest Filtering Bypass in Grafana Enterprise by Grafana Labs
CVE-2023-4399GrafanaGrafana Enterprise7.2HIGHPrivilege Escalation in Grafana by Organization Admins
CVE-2023-4822GrafanaGrafana Enterprise7.2HIGHAccount Takeover Vulnerability in Grafana for Azure AD Accounts
CVE-2023-3128GrafanaGrafana9.8CRITICALImproper Access Control in Grafana Monitoring Platform
CVE-2023-2183GrafanaGrafana6.4MEDIUMQuery Manipulation Vulnerability in Grafana Monitoring Platform
CVE-2023-2801GrafanaGrafana5.3MEDIUMAuthentication Bypass in Grafana Monitoring Platform
CVE-2023-1387GrafanaGrafana7.5HIGHStored XSS in Graphite FunctionDescription tooltip
CVE-2023-1410GrafanaGrafana6.2MEDIUMStored XSS in Grafana Text plugin
CVE-2023-22462GrafanaGrafana6.4MEDIUMStored XSS Vulnerability in Grafana's GeoMap Plugin
CVE-2023-0507GrafanaGrafanaEPSS 66%7.3HIGHStored XSS Vulnerability in Grafana Monitoring Platform
CVE-2023-0594GrafanaGrafanaEPSS 34%7.3HIGH