Vulnerabilities > Grafana > Low

DATE CVE VULNERABILITY TITLE RISK
2024-10-29 CVE-2024-10452 Authorization Bypass Through User-Controlled Key vulnerability in Grafana 10.4.0
Organization admins can delete pending invites created in an organization they are not part of.
network
low complexity
grafana CWE-639
2.7
2.7
2023-01-27 CVE-2022-39324 Cross-site Scripting vulnerability in Grafana
Grafana is an open-source platform for monitoring and observability.
network
low complexity
grafana CWE-79
3.5
3.5
2022-11-30 CVE-2022-46156 Unspecified vulnerability in Grafana Synthetic Monitoring Agent
The Synthetic Monitoring Agent for Grafana's Synthetic Monitoring application provides probe functionality and executes network checks for monitoring remote targets.
local
low complexity
grafana
3.3
3.3
2022-09-22 CVE-2022-36062 Improper Preservation of Permissions vulnerability in Grafana
Grafana is an open-source platform for monitoring and observability.
network
low complexity
grafana CWE-281
3.8
3.8