Known Vulnerabilities in Grafana

Show more ↓
11.5.2
11.5.1
11.5.0
11.4.2
11.4.1
11.4.0
11.3.4
11.3.3
11.3.2
11.3.1
11.3.0
11.2.7
11.2.6
11.2.5
11.2.4
11.2.3
11.2.2
11.2.2+security-01



Information disclosure in Grafana03 Feb, 2025
Medium Patched
Improper access control in Grafana22 Oct, 2024
Low Patched
Remote code execution in Grafana SQL Expressions18 Oct, 2024
Medium Patched Public exploit
Reflected XSS in Grafana15 Aug, 2024
Medium Patched
Email verification bypass in Grafana07 May, 2024
Low Patched
Improper Authorization in Grafana27 Mar, 2024
Medium Patched
Improper access control in Grafana11 Mar, 2024
Medium Patched
Security restrictions bypass in Grafana16 Oct, 2023
Low Patched
Missing authorization in Grafana20 Jul, 2023
Low Patched
Authentication bypass in Grafana Azure AD OAuth22 Jun, 2023
High Patched
Denial of service in Grafana22 Jun, 2023
Medium Patched
JWT token disclosure in Grafana22 Jun, 2023
Medium Patched
Stored XSS in Grafana19 Apr, 2023
Low Patched
Multiple vulnerabilities in Grafana19 Apr, 2023
Low Patched
Stored XSS in Grafana Text plugin01 Mar, 2023
Low Patched
Multiple vulnerabilities in Grafana12 Feb, 2023
Medium Patched
Information disclosure in Grafana01 Feb, 2023
Medium Patched
Stored XSS in Grafana26 Jan, 2023
Low Not Patched
Spoofing attack in Grafana26 Jan, 2023
Low Not Patched
Privilege escalation in Grafana SAML integration26 Jan, 2023
High Patched