Lucene search
K

217 matches found

Nuclei
Nuclei
added 2026/06/25 1:31 a.m.129 views

Grafana 3.0.1-7.0.1 - Server-Side Request Forgery

Grafana 3.0.1 through 7.0.1 is susceptible to server-side request forgery via the avatar feature, which can lead to remote code execution. Any unauthenticated user/client can make Grafana send HTTP requests to any URL and return its result. This can be used to gain information about the network...

8.2CVSS7AI score0.99856EPSS
Exploits5References5
Tenable Nessus
Tenable Nessus
added 2026/06/14 12:0 a.m.9 views

openSUSE 16 Security Update : grafana (openSUSE-SU-2026:20940-1)

The remote openSUSE 16 host has a package installed that is affected by multiple vulnerabilities as referenced in the openSUSE-SU-2026:20940-1 advisory. Changes in grafana: - CVE-2026-39821: Fix validation bypass and privilege escalation by updating golang.org/x/net to version 0.55.0 bsc1266600 -...

9.6CVSS7.5AI score0.01929EPSS
Exploits1References72
Wolfi
Wolfi
added 2026/06/13 7:48 a.m.13 views

GHSA-8396-JFFM-QX4W vulnerabilities

Vulnerabilities for packages: grafana...

5.2AI score
Exploits0
Wolfi
Wolfi
added 2026/06/13 7:48 a.m.18 views

CVE-2026-48096 vulnerabilities

Vulnerabilities for packages: grafana...

5.3CVSS5.1AI score0.00101EPSS
Exploits0
Redos
Redos
added 2026/06/05 12:0 a.m.8 views

ROS-20260605-73-0046

The vulnerability in Grafana relates to the unencrypted storage of user data. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

7.5CVSS5.4AI score0.00309EPSS
Exploits0
Wolfi
Wolfi
added 2026/05/30 1:48 a.m.21 views

CVE-2026-28374 vulnerabilities

Vulnerabilities for packages: grafana...

4.3CVSS5.8AI score0.00198EPSS
Exploits0
Chainguard
Chainguard
added 2026/05/30 1:18 a.m.17 views

CVE-2026-28380 vulnerabilities

Vulnerabilities for packages: grafana, grafana-fips...

6.5CVSS6.6AI score0.00227EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/05/28 12:0 a.m.16 views

RockyLinux 9 : grafana (RLSA-2026:19352)

The remote RockyLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2026:19352 advisory. grafana: Grafana: Information disclosure of data-source passwords via public dashboards CVE-2026-27877 golang: internal/syscall/unix: Root.Chmod can...

7.5CVSS5.8AI score0.00621EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2026/05/27 12:0 a.m.13 views

FreeBSD : Grafana -- Query resampling can cause unbounded memory allocations (c079e809-5900-11f1-b525-3c7c3fba4204)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the c079e809-5900-11f1-b525-3c7c3fba4204 advisory. https://grafana.com/security/security-advisories/cve-2026-27879 reports: A resample query can be used t...

6.5CVSS5.8AI score0.00376EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/05/22 12:0 a.m.19 views

Unity Linux 20.1060e / 20.1070e Security Update: grafana (UTSA-2026-016632)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-016632 advisory. Grafana is an open-source platform for monitoring and observability. Grafana prior to versions 8.3.2 and 7.5.12 contains a directory traversal vulnerability for full...

4.3CVSS6.7AI score0.57991EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2026/05/19 4:15 p.m.22 views

Important: Red Hat Security Advisory: grafana security update

An update for grafana is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...

7.5CVSS7.2AI score0.00621EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/05/19 12:0 a.m.15 views

RHEL 9 : grafana (RHSA-2026:19352)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:19352 advisory. Grafana is an open source, feature rich metrics dashboard and graph editor for Graphite, InfluxDB & OpenTSDB. Security Fixes: grafana:...

7.5CVSS7.3AI score0.00621EPSS
Exploits0References8
Redos
Redos
added 2026/05/15 12:0 a.m.11 views

ROS-20260515-73-0013

Vulnerability in grafana related to synchronization errors when using a shared resource. Exploitation of the vulnerability could allow an attacker to escalate their privileges...

2.6CVSS5.8AI score0.00175EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/05/06 12:0 a.m.11 views

RHEL 8 : grafana (RHSA-2026:11507)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:11507 advisory. Grafana is an open source, feature rich metrics dashboard and graph editor for Graphite, InfluxDB & OpenTSDB. Security Fixes: golang:...

7.5CVSS5.9AI score0.00621EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2026/05/03 12:0 a.m.8 views

MiracleLinux 9 : grafana-10.2.6-20.el9_7 (AXSA:2026-526:11)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2026-526:11 advisory. grafana: Grafana: Information disclosure of data-source passwords via public dashboards CVE-2026-27877 Tenable has extracted the preceding description block...

7.5CVSS5.8AI score0.00309EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/04/30 12:0 a.m.9 views

AlmaLinux 10 : grafana (ALSA-2026:10223)

The remote AlmaLinux 10 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2026:10223 advisory. grafana: Grafana: Information disclosure of data-source passwords via public dashboards CVE-2026-27877 Tenable has extracted the preceding description block...

7.5CVSS5.4AI score0.00309EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/04/29 12:0 a.m.7 views

RHEL 9 : grafana (RHSA-2026:11416)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2026:11416 advisory. Grafana is an open source, feature rich metrics dashboard and graph editor for Graphite, InfluxDB & OpenTSDB. Security Fixes: grafana: Grafana:...

7.5CVSS5.5AI score0.00309EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/04/28 12:0 a.m.5 views

RockyLinux 9 : grafana (RLSA-2026:10226)

The remote RockyLinux 9 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2026:10226 advisory. grafana: Grafana: Information disclosure of data-source passwords via public dashboards CVE-2026-27877 Tenable has extracted the preceding description block...

7.5CVSS5.3AI score0.00309EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/04/24 12:0 a.m.5 views

RHEL 9 : grafana (RHSA-2026:10226)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2026:10226 advisory. Grafana is an open source, feature rich metrics dashboard and graph editor for Graphite, InfluxDB & OpenTSDB. Security Fixes: grafana: Grafana:...

7.5CVSS5.6AI score0.00309EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/04/20 12:0 a.m.7 views

RHEL 9 : grafana (RHSA-2026:8847)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2026:8847 advisory. Grafana is an open source, feature rich metrics dashboard and graph editor for Graphite, InfluxDB & OpenTSDB. Security Fixes: net/url: Incorrect...

7.5CVSS5.8AI score0.00728EPSS
Exploits0References4
Rows per page
Query Builder