Vulnerabilities > Grafana
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-10-13 | CVE-2022-39201 | Unspecified vulnerability in Grafana Grafana is an open source observability and data visualization platform. | 7.5 |
| 2022-10-13 | CVE-2022-39229 | Improper Authentication vulnerability in Grafana Grafana is an open source data visualization platform for metrics, logs, and traces. | 4.3 |
| 2022-10-13 | CVE-2022-31123 | Improper Verification of Cryptographic Signature vulnerability in multiple products Grafana is an open source observability and data visualization platform. | 7.8 |
| 2022-09-22 | CVE-2022-36062 | Improper Preservation of Permissions vulnerability in Grafana Grafana is an open-source platform for monitoring and observability. | 3.8 |
| 2022-09-20 | CVE-2022-35957 | Authentication Bypass by Spoofing vulnerability in multiple products Grafana is an open-source platform for monitoring and observability. | 6.6 |
| 2022-09-02 | CVE-2022-31176 | Missing Authentication for Critical Function vulnerability in Grafana Grafana-Image-Renderer Grafana Image Renderer is a Grafana backend plugin that handles rendering of panels & dashboards to PNGs using a headless browser (Chromium/Chrome). | 8.1 |
| 2022-07-15 | CVE-2022-31107 | Incorrect Authorization vulnerability in multiple products Grafana is an open-source platform for monitoring and observability. | 7.5 |
| 2022-07-15 | CVE-2022-31097 | Cross-site Scripting vulnerability in multiple products Grafana is an open-source platform for monitoring and observability. | 8.7 |
| 2022-06-17 | CVE-2022-32276 | Improper Authentication vulnerability in Grafana 8.4.3 Grafana 8.4.3 allows unauthenticated access via (for example) a /dashboard/snapshot/*?orgId=0 URI. | 7.5 |
| 2022-06-06 | CVE-2022-32275 | Path Traversal vulnerability in Grafana 8.4.3 Grafana 8.4.3 allows reading files via (for example) a /dashboard/snapshot/%7B%7Bconstructor.constructor'/.. | 7.5 |