| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-3717 | Incorrect oauth passthrough in Grafana Snowflake Datasource | Grafana Labs | Grafana Snowflake Datasource Plugin | 中危 | - | 2025-11-11 20:17:48 | Deep Dive |
| CVE-2025-11539 | Arbitrary Code Execution in Grafana Image Renderer Plugin | Grafana | grafana-image-renderer | Critical | 9.9 | 2025-10-09 07:18:16 | Deep Dive |
| CVE-2025-10630 | Regex DoS in Grafana Zabbix Plugin | Grafana | grafana-zabbix-plugin | Medium | 4.3 | 2025-09-19 09:44:15 | Deep Dive |
| CVE-2025-8341 | SSRF in Infinity Datasource Plugin | Grafana | grafana-infinity-datasource | Medium | 5.0 | 2025-08-04 08:34:51 | Deep Dive |
| CVE-2025-6197 | Grafana OSS 安全漏洞 | Grafana | Grafana | Medium | 4.2 | 2025-07-18 07:48:23 | Deep Dive |
| CVE-2025-6023 | Grafana OSS 安全漏洞 | Grafana | Grafana | High | 7.6 | 2025-07-18 07:48:16 | Deep Dive |
| CVE-2025-3415 | Grafana 安全漏洞 | Grafana | Grafana | Medium | 4.3 | 2025-07-17 10:13:15 | Deep Dive |
| CVE-2025-1088 | Very long unicode dashboard title or panel name can hang the frontend | Grafana | Grafana | Low | 2.7 | 2025-06-18 09:54:30 | Deep Dive |
| CVE-2025-3454 | Grafana 安全漏洞 | Grafana | Grafana | Medium | 5.0 | 2025-06-02 10:34:09 | Deep Dive |
| CVE-2025-3260 | Grafana 安全漏洞 | Grafana | Grafana | High | 8.3 | 2025-06-02 10:06:39 | Deep Dive |
| CVE-2025-3580 | Grafana OSS 安全漏洞 | Grafana | Grafana | Medium | 5.5 | 2025-05-23 13:44:46 | Deep Dive |
| CVE-2025-4123 | Grafana 安全漏洞 | Grafana | Grafana | High | 7.6 | 2025-05-22 07:44:09 | Deep Dive |
| CVE-2025-2703 | Grafana 安全漏洞 | Grafana | Grafana | Medium | 6.8 | 2025-04-23 11:36:03 | Deep Dive |
| CVE-2024-11741 | Grafana 安全漏洞 | Grafana | Grafana | Medium | 4.3 | 2025-01-31 15:12:29 | Deep Dive |
| CVE-2024-9476 | Privilege escalation vulnerability for Organizations in Grafana | Grafana Labs | Grafana OSS and Enterprise | - | - | 2024-11-13 16:30:55 | Deep Dive |
| CVE-2024-10452 | Grafana 安全漏洞 | Grafana | Grafana | Low | 2.2 | 2024-10-29 15:16:22 | Deep Dive |
| CVE-2024-9264 | Grafana SQL Expressions allow for remote code execution | Grafana | Grafana | Critical | 9.9 | 2024-10-18 03:20:52 | Deep Dive |
| CVE-2024-8118 | Grafana alerting wrong permission on datasource rule write endpoint | Grafana | Grafana | - | - | 2024-09-26 18:46:07 | Deep Dive |
| CVE-2024-8996 | Grafana Agent Flow on Windows Unquoted service path | Grafana | Agent Flow | High | 7.3 | 2024-09-25 16:45:15 | Deep Dive |
| CVE-2024-8975 | Grafana Alloy on Windows Unquoted service path | Grafana | Alloy | High | 7.3 | 2024-09-25 16:42:10 | Deep Dive |