Bleeping Computer

Grafana warns of max severity admin spoofing vulnerability

Grafana Labs is warning of a maximum severity vulnerability (CVE-2025-41115) in its Enterprise product that can be exploited to treat new users as administrators or for privilege escalation. The issue ...
InfoQ

Grafana Frees up Engineers to Fix Problems with Improved Incident Management

A monthly overview of things you need to know as an architect or aspiring architect. Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with ...
Yahoo Finance

Grafana Labs Named a Leader in 2025 Gartner® Magic Quadrant™ for Observability Platforms

Recognition places the company furthest in the "Completeness of Vision" category. This comes at a time when Grafana Labs’ differentiated open source and open ecosystem strategy and adaptive cost ...
Bleeping Computer

Over 46,000 Grafana instances exposed to account takeover bug

More than 46,000 internet-facing Grafana instances remain unpatched and exposed to a client-side open redirect vulnerability that allows executing a malicious plugin and account takeover. The flaw is ...
CSOonline

‘Grafana Ghost’ XSS flaw exposes 47,000 servers to account takeover

A newly discovered cross-site scripting (XSS) vulnerability in Grafana — a widely used open-source analytics and visualization platform for developers — has put thousands of servers at risk of ...