CVE-2025-3415 in Grafanaالمعلومات

الملخص

بحسب MITRE • 17/07/2025

Grafana is an open-source platform for monitoring and observability. The Grafana Alerting DingDing integration was not properly protected and could be exposed to users with Viewer permission. Fixed in versions 10.4.19+security-01, 11.2.10+security-01, 11.3.7+security-01, 11.4.5+security-01, 11.5.5+security-01, 11.6.2+security-01 and 12.0.1+security-01

If you want to get best quality of vulnerability data, you may have to visit VulDB.

حجز

07/04/2025

إفشاء

17/07/2025

الاعتدال

تمت الموافقة

إدخال

VDB-313772

EPSS

0.00890

KEV

لا

النشاطات

منخفض جدًا

المصادر

Want to know what is going to be exploited?

We predict KEV entries!