Over 46,000 Grafana instances exposed to account takeover bug

June 15, 2025

Over 46,000 Grafana instances exposed to account takeover bug

More than 46,000 internet-facing Grafana instances remain unpatched and exposed to a client-side open redirect vulnerability that allows executing a malicious plugin and account takeover.
The flaw is …

Published Date:
Jun 15, 2025 (12 hours, 12 minutes ago)

Vulnerabilities has been mentioned in this article.

CVE-2025-4123

Source: Read More

Previous ArticleDems demand audit of CVE program as Federal funding remains uncertain

Next Article Week in review: Microsoft fixes exploited zero-day, Mirai botnets target unpatched Wazuh servers

Highlights

CVE-2025-22410 – Apache HTTP Server Use-After-Free Remote Code Execution Vulnerability

August 26, 2025

CVE ID : CVE-2025-22410

Published : Aug. 26, 2025, 11:15 p.m. | 3 hours, 39 minutes ago

Description : In multiple locations, there is a possible way to execute arbitrary code due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE-2025-38336 – VIA ata DMA Hard Hang Vulnerability

July 10, 2025

Rilasciata Oracle Linux 10: Novità e Miglioramenti

June 28, 2025

The AI Fix #46: AI can read minds now, and is your co-host a clone?

April 15, 2025

From Data To Decisions: UX Strategies For Real-Time Dashboards

Honeycomb launches AI observability suite for developers

Low-Code vs No-Code Platforms for Node.js: What CTOs Must Know Before Investing

ServiceNow unveils Zurich AI platform

DistroWatch Weekly, Issue 1139

Building personal apps with open source and AI

What Can We Actually Do With corner-shape?

Craft, Clarity, and Care: The Story and Work of Mengchu Yao

Optimizely Mission Control – Part III

Optimizely Mission Control – Part III

Learning from PHP Log to File Example

Online EMI Calculator using PHP – Calculate Loan EMI, Interest, and Amortization Schedule

DistroWatch Weekly, Issue 1139

DistroWatch Weekly, Issue 1139

sudo vs sudo-rs: What You Need to Know About the Rust Takeover of Classic Sudo Command

Dmitry — The Deep Magic

Over 46,000 Grafana instances exposed to account takeover bug

Over 46,000 Grafana instances exposed to account takeover bug

Cursor AI Code Editor Flaw Enables Silent Code Execution via Malicious Repositories

Introducing HybridPetya: Petya/NotPetya copycat with UEFI Secure Boot bypass

Windows 10 KB5063709 Cumulative Update Brings ESU Enrollment Fix & More

How Anomalo solves unstructured data quality issues to deliver trusted assets for AI with AWS

Say hello to ECMAScript 2025

NFO Viewer is a viewer for NFO files

CVE-2025-22410 – Apache HTTP Server Use-After-Free Remote Code Execution Vulnerability

CVE-2025-38336 – VIA ata DMA Hard Hang Vulnerability

Rilasciata Oracle Linux 10: Novità e Miglioramenti

The AI Fix #46: AI can read minds now, and is your co-host a clone?

Over 46,000 Grafana instances exposed to account takeover bug

Over 46,000 Grafana instances exposed to account takeover bug

Related Posts