Vulnerabilities > Grafana

DATE CVE VULNERABILITY TITLE RISK
2022-04-12 CVE-2022-24812 Improper Privilege Management vulnerability in Grafana
Grafana is an open-source platform for monitoring and observability.
network
grafana CWE-269
6.0
2022-03-21 CVE-2022-26148 Cleartext Storage of Sensitive Information vulnerability in multiple products
An issue was discovered in Grafana through 7.3.4, when integrated with Zabbix.
network
low complexity
grafana redhat CWE-312
7.5
2022-02-08 CVE-2022-21703 Cross-Site Request Forgery (CSRF) vulnerability in multiple products
Grafana is an open-source platform for monitoring and observability.
6.8
2022-02-08 CVE-2022-21713 Incorrect Authorization vulnerability in multiple products
Grafana is an open-source platform for monitoring and observability.
3.5
2022-02-08 CVE-2022-21702 Cross-site Scripting vulnerability in multiple products
Grafana is an open-source platform for monitoring and observability.
network
high complexity
grafana netapp fedoraproject CWE-79
2.1
2022-01-18 CVE-2022-21673 Information Exposure vulnerability in multiple products
Grafana is an open-source platform for monitoring and observability.
3.5
2021-12-10 CVE-2021-43815 Path Traversal vulnerability in Grafana
Grafana is an open-source platform for monitoring and observability.
network
grafana CWE-22
3.5
2021-12-10 CVE-2021-43813 Path Traversal vulnerability in Grafana
Grafana is an open-source platform for monitoring and observability.
network
low complexity
grafana CWE-22
4.0
2021-12-08 CVE-2021-41090 Cleartext Storage of Sensitive Information vulnerability in Grafana Agent
Grafana Agent is a telemetry collector for sending metrics, logs, and trace data to the opinionated Grafana observability stack.
network
grafana CWE-312
4.3
2021-12-07 CVE-2021-43798 Path Traversal vulnerability in Grafana
Grafana is an open-source platform for monitoring and observability.
network
low complexity
grafana CWE-22
5.0