VDB
WID-SEC-W-2024-0585
WID-SEC-W-2024-0585
PUBLISHED
CVSS 9.300000190734863 CRITICAL
Grafana ist eine Open-Source Analyse- und Visualisierungssoftware.
Risk Scores
CVSS v4.0
9.300000190734863
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Grafana Grafana 10.0.12 | ||
| Grafana Grafana <10.4.0 | ||
| Grafana Grafana 10.4.0 | ||
| Grafana Grafana 10.1.8 | ||
| Grafana Grafana 10.3.4 | ||
| Oracle Linux | ||
| Grafana Grafana <10.2.5 | ||
| Grafana Grafana <10.3.4 | ||
| Grafana Grafana <10.0.12 | ||
| Grafana Grafana <10.1.8 | ||
| Grafana Grafana <9.5.17 | ||
| Grafana Grafana 9.5.17 | ||
| Grafana Grafana 10.2.5 | ||
| Red Hat Enterprise Linux |
Timeline
- Mar 7, 2024 CVE Published
- Mar 31, 2026 Distribution Patch
- Apr 9, 2026 CVE Updated
References
- https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-0585.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-0585 advisory
- https://grafana.com/blog/2024/03/07/grafana-security-release-medium-severity-security-fix-for-cve-2024-1442/ url
- https://bugzilla.redhat.com/show_bug.cgi?id=2268486 url
- https://github.com/advisories/GHSA-5mxf-42f5-j782 url
- https://access.redhat.com/errata/RHSA-2024:2633 url
- https://linux.oracle.com/errata/ELSA-2025-23948.html url
- https://linux.oracle.com/errata/ELSA-2026-1344.html url
- https://linux.oracle.com/errata/ELSA-2026-3188.html url
- https://linux.oracle.com/errata/ELSA-2026-7011.html url