Grafana Vulnerabilities
Comprehensive security vulnerability database for Grafana products
1
0
0
0
Severity Distribution
| Description | Vendor / Product | Exploit Status | |||
|---|---|---|---|---|---|
| CVE-2026-21725 | 2.0 | This vulnerability allows an attacker with admin access to a data source to delete it again after it has been recreated by someone else, even if they no longer have admin rights to the new version. However, this can only happen within 30 seconds of the original deletion, and the new data source must have the same unique identifier as the deleted one, which is randomly assigned by default. | grafanagrafana | Theoretical | about 1 month agoFeb 25, 2026 |
About Grafana Security
This page tracks all publicly disclosed security vulnerabilities (CVEs) affecting Grafana products. Our database is updated in real-time from the National Vulnerability Database (NVD) and enriched with exploit information from GitHub and other security research sources.
Each CVE listing includes CVSS severity scores, exploit availability status, AI-powered vulnerability summaries, and links to official patches and security advisories.