Grafana Latest Vulnerabilities
Latest vulnerabilities published by grafana
Vulnerability Published:
๐๏ธ Published
- Anytime
Sort By:
๐๏ธ Published Date
- Descending
Infinity Datasource Plugin for Grafana Vulnerability Exposes Data to Attackers
CVE-2025-8341GrafanaGrafana-infinity-datas...5MEDIUMOpen Redirect Vulnerability in Grafana OSS Affecting Multiple Organizations
CVE-2025-6197GrafanaGrafana4.2MEDIUMOpen Redirect Vulnerability in Grafana OSS by Grafana
CVE-2025-6023GrafanaGrafana7.6HIGHAuthorization Flaw in Grafana Alerting Integration Exposes Viewer Permissions
CVE-2025-3415GrafanaGrafana4.3MEDIUMInput Validation Flaw in Grafana Causes Chromium Browser Unresponsiveness
CVE-2025-1088GrafanaGrafana2.7LOWAuthorization Bypass in Grafana's Datasource Proxy API
CVE-2025-3454GrafanaGrafana5MEDIUMAuthentication Flaw in Grafana Affecting User Permissions
CVE-2025-3260GrafanaGrafana8.3HIGHAccess Control Flaw in Grafana OSS Affects Organizational Administrators
CVE-2025-3580GrafanaGrafana5.5MEDIUMCross-Site Scripting Vulnerability in Grafana by Grafana Labs
CVE-2025-4123GrafanaGrafana๐๐พ๐ก๐ฐ6.1MEDIUMDOM XSS Vulnerability in XY Chart Plugin by Grafana
CVE-2025-2703GrafanaGrafana6.8MEDIUMExposure in Grafana Alerting VictorOps Integration Affects Users with Viewer Permission
CVE-2024-11741GrafanaGrafana4.3MEDIUMPrivilege Escalation Vulnerability in Grafana Labs Grafana OSS and Enterprise
CVE-2024-9476Grafana LabsUnauthorized Invite Deletion in Grafana by Admins
CVE-2024-10452GrafanaGrafana2.7LOWGrafana SQL Expressions Vulnerability: Command Injection and Local File Inclusion Risks
CVE-2024-9264GrafanaGrafana๐ฅ๐๐พ๐กEPSS 92%๐ฐ9.4CRITICALWrong Permission in Grafana's Alert Rule Write API Endpoint Allows Unauthorized Rule Writing
CVE-2024-8118GrafanaGrafana๐พ๐ก๐ฐPrivilege Escalation Vulnerability in Grafana Alloy
CVE-2024-8975GrafanaAlloy7.8HIGHPrivilege Escalation Vulnerability in Grafana Agent Flow Mode for Windows
CVE-2024-8996GrafanaAgent Flow7.8HIGHGrafana Plugin SDK Includes Build Metadata and Credentials in Binaries
CVE-2024-8986Grafana-plugin-sd...Grafana Plugin SdkAccess Control Bypass in Grafana Plugin by Grafana Labs
CVE-2024-6322Grafana LabsGrafanaServer Side Request Forgery in Grafana OnCall by Grafana Labs
CVE-2024-5526GrafanaOncall9.1CRITICALGrafana Vulnerability: Unauthorized Snapshot Deletion via DELETE Request
CVE-2024-1313GrafanaGrafana6.5MEDIUMGranting Unrestricted Access to Data Sources Through UID
CVE-2024-1442GrafanaGrafana8.8HIGHGrafana CSV Datasource Plugin Vulnerability
CVE-2023-5122GrafanaGrafana-csv-datasource5.3MEDIUMGrafana JSON datasource plugin vulnerability
CVE-2023-5123GrafanaGrafana-json-datasource8HIGHEmail Verification Bypassed in Profile Settings
CVE-2023-6152GrafanaGrafana5.4MEDIUM