Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added yesterday3 views

CVE-2026-11769

A flaw was found in the Grafana Operator. This vulnerability allows a malicious user, who can create Dashboard or LibraryPanel resources for a Grafana instance, to exploit a path traversal issue within the jsonnet data templating language. This exploitation can lead to privilege escalation and...

8.8CVSS5.7AI score0.00361EPSS
Exploits0References4
EUVD
EUVD
added 2026/06/19 8:51 p.m.11 views

EUVD-2026-36641

Grafana Operator: Privilege escalation from namespace admin to cluster admin via GrafanaDashboard jsonnetLib fileName...

6.4CVSS5.8AI score0.00361EPSS
Exploits0References3
Github Security Blog
Github Security Blog
added 2026/06/13 6:30 a.m.5 views

Duplicate Advisory: Privilege escalation from namespace admin to cluster admin via GrafanaDashboard jsonnetLib fileName

Duplicate Advisory This advisory has been withdrawn because it is a duplicate of GHSA-fcw4-wwqm-m8cf. This link is maintained to preserve external references. Original Description We have released version 5.24.0 of the Grafana Operator. This patch includes a CRITICAL severity security fix for a...

8.8CVSS5.8AI score0.00361EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2026/06/13 6:16 a.m.16 views

CVE-2026-11769

We have released version 5.24.0 of the Grafana Operator. This patch includes a CRITICAL severity security fix for a path traversal/privilege escalation vulnerability in the Grafana Operator. Summary The Grafana Operator supports loading dashboards & library panels using the jsonnet data templatin...

8.8CVSS0.00361EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/06/13 4:17 a.m.7 views

CVE-2026-11769 Operator - Namespaced User Path Traversal

We have released version 5.24.0 of the Grafana Operator. This patch includes a CRITICAL severity security fix for a path traversal/privilege escalation vulnerability in the Grafana Operator. Summary The Grafana Operator supports loading dashboards & library panels using the jsonnet data templatin...

6.4CVSS5.5AI score0.00361EPSS
Exploits0References1
CVE
CVE
added 2026/06/13 4:17 a.m.47 views

CVE-2026-11769

Grafana Operator

8.8CVSS5.5AI score0.00361EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder