10 matches found
EUVD-2024-1627
Malicious code in bioql PyPI...
ROS-20250619-15
A software vulnerability in the Grafana monitoring and surveillance platform is related to a vulnerability in the of the XY Chart plugin to DOM XSS. Exploitation of the vulnerability could allow an attacker acting remotely, execute arbitrary code Grafana monitoring and surveillance platform...
GO-2025-3742 Grafana's datasource proxy API allows authorization checks to be bypassed in github.com/grafana/grafana
Grafana's datasource proxy API allows authorization checks to be bypassed in github.com/grafana/grafana. NOTE: The source advisory for this report contains additional versions that could not be automatically mapped to standard Go module versions. If this is causing false-positive reports from...
Linux Distros Unpatched Vulnerability : CVE-2022-39306
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Grafana is an open-source platform for monitoring and observability. Versions prior to 9.2.4, or 8.5.15 on the 8.X branch, are subject to Improper Input...
CVE-2024-56323 vulnerabilities
Vulnerabilities for packages: grafana-fips, grafana...
CVE-2024-9264 vulnerabilities
Vulnerabilities for packages: grafana-fips, grafana...
CVE-2024-8118 vulnerabilities
Vulnerabilities for packages: grafana...
CVE-2024-43788 vulnerabilities
Vulnerabilities for packages: grafana-fips, argo-workflows, grafana, grafana-11.0...
CVE-2024-6322 vulnerabilities
Vulnerabilities for packages: grafana-fips, grafana...
Arbitrary File Read
github.com/grafana/grafana is vulnerable to arbitrary file read. Lack of proper handling of MySQL data source connection string allows an authenticated user having privilege to modify the configuration to read arbitrary files...