Vulnerabilities > Grafana > Grafana > 9.0.8
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-03-07 | CVE-2024-1442 | Unspecified vulnerability in Grafana A user with the permissions to create a data source can use Grafana API to create a data source with UID set to *. Doing this will grant the user access to read, query, edit and delete all data sources within the organization. | 8.8 |
| 2023-06-06 | CVE-2023-2183 | Missing Authorization vulnerability in Grafana Grafana is an open-source platform for monitoring and observability. | 6.4 |
| 2023-02-03 | CVE-2022-23498 | Unspecified vulnerability in Grafana Grafana is an open-source platform for monitoring and observability. | 8.8 |
| 2023-01-27 | CVE-2022-23552 | Unspecified vulnerability in Grafana Grafana is an open-source platform for monitoring and observability. | 5.4 |
| 2023-01-27 | CVE-2022-39324 | Unspecified vulnerability in Grafana Grafana is an open-source platform for monitoring and observability. | 3.5 |
| 2022-11-09 | CVE-2022-39307 | Information Exposure Through an Error Message vulnerability in Grafana Grafana is an open-source platform for monitoring and observability. | 5.3 |
| 2022-11-09 | CVE-2022-39306 | Unspecified vulnerability in Grafana Grafana is an open-source platform for monitoring and observability. | 8.1 |
| 2022-10-13 | CVE-2022-31130 | Insufficiently Protected Credentials vulnerability in Grafana Grafana is an open source observability and data visualization platform. | 7.5 |
| 2022-10-13 | CVE-2022-39201 | Unspecified vulnerability in Grafana Grafana is an open source observability and data visualization platform. | 7.5 |
| 2022-10-13 | CVE-2022-39229 | Unspecified vulnerability in Grafana Grafana is an open source data visualization platform for metrics, logs, and traces. | 4.3 |