Grafana Latest Vulnerabilities
Latest vulnerabilities published by grafana
Vulnerability Published:
ποΈ Published
- Anytime
Sort By:
ποΈ Published Date
- Descending
Open Redirect Vulnerability in Grafana OSS Affecting Multiple Organizations
CVE-2025-6197GrafanaGrafana4.2MEDIUMOpen Redirect Vulnerability in Grafana OSS by Grafana
CVE-2025-6023GrafanaGrafana7.6HIGHAuthorization Flaw in Grafana Alerting Integration Exposes Viewer Permissions
CVE-2025-3415GrafanaGrafana4.3MEDIUMInput Validation Flaw in Grafana Causes Chromium Browser Unresponsiveness
CVE-2025-1088GrafanaGrafana2.7LOWAuthorization Bypass in Grafana's Datasource Proxy API
CVE-2025-3454GrafanaGrafana5MEDIUMAuthentication Flaw in Grafana Affecting User Permissions
CVE-2025-3260GrafanaGrafana8.3HIGHAccess Control Flaw in Grafana OSS Affects Organizational Administrators
CVE-2025-3580GrafanaGrafana5.5MEDIUMCross-Site Scripting Vulnerability in Grafana by Grafana Labs
CVE-2025-4123GrafanaGrafanaππΎπ‘π°7.6HIGHDOM XSS Vulnerability in XY Chart Plugin by Grafana
CVE-2025-2703GrafanaGrafana6.8MEDIUMExposure in Grafana Alerting VictorOps Integration Affects Users with Viewer Permission
CVE-2024-11741GrafanaGrafana4.3MEDIUMPrivilege Escalation Vulnerability in Grafana Labs Grafana OSS and Enterprise
CVE-2024-9476Grafana LabsUnauthorized Invite Deletion in Grafana by Admins
CVE-2024-10452GrafanaGrafana2.7LOWGrafana SQL Expressions Vulnerability: Command Injection and Local File Inclusion Risks
CVE-2024-9264GrafanaGrafanaπ₯ππΎπ‘EPSS 92%π°9.4CRITICALWrong Permission in Grafana's Alert Rule Write API Endpoint Allows Unauthorized Rule Writing
CVE-2024-8118GrafanaGrafanaπΎπ‘π°Privilege Escalation Vulnerability in Grafana Alloy
CVE-2024-8975GrafanaAlloy7.8HIGHPrivilege Escalation Vulnerability in Grafana Agent Flow Mode for Windows
CVE-2024-8996GrafanaAgent Flow7.8HIGHGrafana Plugin SDK Includes Build Metadata and Credentials in Binaries
CVE-2024-8986Grafana-plugin-sd...Grafana Plugin SdkAccess Control Bypass in Grafana Plugin by Grafana Labs
CVE-2024-6322Grafana LabsGrafanaServer Side Request Forgery in Grafana OnCall by Grafana Labs
CVE-2024-5526GrafanaOncall9.1CRITICALGrafana Vulnerability: Unauthorized Snapshot Deletion via DELETE Request
CVE-2024-1313GrafanaGrafana6.5MEDIUMGranting Unrestricted Access to Data Sources Through UID
CVE-2024-1442GrafanaGrafana8.8HIGHGrafana CSV Datasource Plugin Vulnerability
CVE-2023-5122GrafanaGrafana-csv-datasource5.3MEDIUMGrafana JSON datasource plugin vulnerability
CVE-2023-5123GrafanaGrafana-json-datasource8HIGHEmail Verification Bypassed in Profile Settings
CVE-2023-6152GrafanaGrafana5.4MEDIUMDOM XSS Vulnerability in Grafana's WorldMap Panel Plugin
CVE-2023-3010GrafanaWorldmap-panel7.3HIGH