RHSA-2026%3A8847 — Vulnetix

RHSA-2026%3A8847 PUBLISHED CVSS 7.5 HIGH

Red Hat Security Advisory: grafana security update

Risk Scores

CVSS 3.1

7.5

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected Products

Vendor	Product	Versions
Red Hat:rhel_eus:9.6::appstream	grafana-debuginfo	0, 0
Red Hat:rhel_eus:9.6::appstream	grafana-debugsource	0, 0
Red Hat:rhel_eus:9.6::appstream	grafana-selinux	0, 0
Red Hat:rhel_eus:9.6::appstream	grafana	0, 0

Exploit Intelligence

.image-gitlab-ci.yml (github-poc)
.image-gitlab-ci.yml (github-poc)
.trivyignore.image.yaml (github-poc)
.trivyignore.image.yaml (github-poc)
.trivyignore.yaml (github-poc)
.trivyignore.yaml (github-poc)

Timeline

Apr 20, 2026 CVE Published
Apr 28, 2026 Distribution Patch
Apr 28, 2026 Distribution Patch
Apr 28, 2026 Security Advisory
Apr 28, 2026 Security Advisory
Jun 17, 2026 CVE Updated

References

https://access.redhat.com/errata/RHSA-2026:8847 advisory
https://access.redhat.com/security/updates/classification/#important article
https://bugzilla.redhat.com/show_bug.cgi?id=2445356 report
https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_8847.json advisory
https://access.redhat.com/security/cve/CVE-2026-25679 report
https://www.cve.org/CVERecord?id=CVE-2026-25679 advisory
https://nvd.nist.gov/vuln/detail/CVE-2026-25679 advisory
https://go.dev/cl/752180 article
https://go.dev/issue/77578 article
https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk article
https://pkg.go.dev/vuln/GO-2026-4601 advisory

Open in Interactive Console →

$ Console Community · 100/wk Open console ›