Homepage

grafana-selinux

Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the grafana-selinux package. This does not include vulnerabilities belonging to this package’s dependencies.

Fix vulnerabilities automatically

Snyk's AI Trust Platform automatically finds the best upgrade path and integrates with your development workflows. Secure your code at zero cost.

Fix for free
VulnerabilityVulnerable Version
  • M
Unchecked Input for Loop Condition

*
  • H
Uncaught Exception

*
  • H
Arbitrary Code Injection

*
  • H
Expression Language Injection

*
  • H
Arbitrary Code Injection

*
  • M
Improperly Controlled Modification of Dynamically-Determined Object Attributes

*
  • H
Improper Verification of Cryptographic Signature

*
  • M
Allocation of Resources Without Limits or Throttling

*
  • H
Information Exposure

*
  • H
Arbitrary Code Injection

*
  • M
Allocation of Resources Without Limits or Throttling

*
  • H
Allocation of Resources Without Limits or Throttling

*
  • M
Executable Regular Expression Error

*
  • M
Inefficient Regular Expression Complexity

*
  • M
Cleartext Storage of Sensitive Information

*
  • M
Unchecked Input for Loop Condition

*
  • H
Improperly Controlled Modification of Dynamically-Determined Object Attributes

*
  • H
Incorrect Behavior Order: Authorization Before Parsing and Canonicalization

*
  • M
Allocation of Resources Without Limits or Throttling

*
  • H
Improper Validation of Syntactic Correctness of Input

*
  • H
Improper Certificate Validation

*
  • M
NULL Pointer Dereference

*
  • H
Improper Restriction of Recursive Entity References in DTDs ('XML Entity Expansion')

*
  • H
CVE-2025-68121

<0:9.2.10-28.el8_10
  • M
Inefficient Regular Expression Complexity

*
  • M
Incorrect Behavior Order: Early Validation

*
  • H
Improper Neutralization of Equivalent Special Elements

*
  • M
Directory Traversal

*
  • M
Unchecked Input for Loop Condition

*
  • M
Improper Validation of Integrity Check Value

*
  • M
Improper Handling of Highly Compressed Data (Data Amplification)

*
  • L
Time-of-check Time-of-use (TOCTOU)

*
  • L
Server-Side Request Forgery (SSRF)

*
  • M
Cross-site Scripting (XSS)

*
  • L
Server-Side Request Forgery (SSRF)

*
  • H
Allocation of Resources Without Limits or Throttling

*
  • M
Loop with Unreachable Exit Condition ('Infinite Loop')

*
  • M
Inefficient Regular Expression Complexity

*
  • M
Inefficient Regular Expression Complexity

*
  • M
Cross-site Scripting (XSS)

*
  • M
Cross-site Scripting (XSS)

*
  • H
Allocation of Resources Without Limits or Throttling

<0:9.2.10-28.el8_10
  • H
Allocation of Resources Without Limits or Throttling

<0:9.2.10-28.el8_10
  • H
Link Following

*
  • H
Authorization Bypass Through User-Controlled Key

*
  • M
Deserialization of Untrusted Data

*
  • H
Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')

*
  • H
Directory Traversal

*
  • H
Time-of-check Time-of-use (TOCTOU)

*
  • M
Time-of-check Time-of-use (TOCTOU)

*
  • M
Cross-site Scripting (XSS)

*
  • M
Use of a Risky Cryptographic Primitive

*
  • H
Allocation of Resources Without Limits or Throttling

*
  • M
Improper Certificate Validation

*
  • L
CVE-2025-58186

*
  • H
Excessive Platform Resource Consumption within a Loop

<0:9.2.10-27.el8_10
  • M
Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')

*
  • M
Resource Exhaustion

*
  • M
Open Redirect

*
  • M
Reachable Assertion

*
  • M
Creation of Immutable Text Using String Concatenation

*
  • M
Allocation of Resources Without Limits or Throttling

<0:9.2.10-26.el8_10
  • M
Allocation of Resources Without Limits or Throttling

*
  • M
Allocation of Resources Without Limits or Throttling

*
  • M
Allocation of Resources Without Limits or Throttling

*
  • M
Improper Output Neutralization for Logs

*
  • M
Expected Behavior Violation

*
  • M
Expected Behavior Violation

*
  • H
Inefficient Regular Expression Complexity

*
  • L
Inefficient Regular Expression Complexity

*
  • L
Link Following

*
  • M
Time-of-check Time-of-use (TOCTOU)

*
  • L
Open Redirect

*
  • M
Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')

*
  • H
Improper Input Validation

*
  • M
CVE-2025-4673

*
  • L
Inefficient Regular Expression Complexity

*
  • L
Improper Input Validation

*
  • M
Origin Validation Error

*
  • M
Exposed Dangerous Method or Function

*
  • M
Inefficient Regular Expression Complexity

*
  • M
Improper Access Control

*
  • M
Improper Certificate Validation

*
  • H
Cross-site Scripting (XSS)

<0:9.2.10-23.el8_10
  • M
Inefficient Regular Expression Complexity

*
  • L
Insufficient Entropy

*
  • M
Incomplete Filtering of Special Elements

*
  • M
Inefficient Regular Expression Complexity

*
  • M
Inefficient Regular Expression Complexity

*
  • M
Inefficient Regular Expression Complexity

*
  • M
HTTP Request Smuggling

<0:9.2.10-25.el8_10
  • M
Improper Input Validation

*
  • M
Cross-site Scripting (XSS)

*
  • M
Arbitrary Code Injection

*
  • M
Server-Side Request Forgery (SSRF)

*
  • H
Allocation of Resources Without Limits or Throttling

<0:9.2.10-21.el8_10
  • H
Arbitrary Argument Injection

<0:9.2.10-21.el8_10
  • H
Cross-site Scripting (XSS)

<0:9.2.10-20.el8_10
  • M
Information Exposure

*
  • M
Cross-site Scripting (XSS)

*
  • H
Improper Verification of Cryptographic Signature

*
  • L
Improper Verification of Cryptographic Signature

*
  • M
Information Exposure

*
  • L
Authorization Bypass Through User-Controlled Key

*
  • L
Information Exposure

*
  • M
Resource Exhaustion

*
  • M
Cross-site Scripting (XSS)

*
  • M
CRLF Injection

*
  • L
Resource Exhaustion

*
  • L
Improper Handling of Exceptional Conditions

*
  • H
Use of Uninitialized Variable

<0:9.2.10-20.el8_10
  • H
Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')

*
  • M
Insufficient Compartmentalization

*
  • M
Insufficiently Protected Credentials

*
  • M
Missing Required Cryptographic Step

*
  • M
Improper Verification of Cryptographic Signature

*
  • M
CVE-2022-39201

*
  • M
Incorrect Implementation of Authentication Algorithm

*
  • M
Information Exposure

*
  • M
Insufficiently Protected Credentials

*
  • M
Improper Verification of Cryptographic Signature

*
  • M
Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')

*
  • M
Improper Input Validation

<0:9.2.10-18.el8_10
  • M
Misinterpretation of Input

<0:9.2.10-17.el8_10
  • M
Improper Input Validation

<0:9.2.10-17.el8_10
  • M
Resource Exhaustion

*
  • M
Loop with Unreachable Exit Condition ('Infinite Loop')

*
  • M
Resource Exhaustion

*
  • M
External Control of Assumed-Immutable Web Parameter

*
  • M
Allocation of Resources Without Limits or Throttling

*
  • M
Arbitrary Code Injection

*
  • M
Allocation of Resources Without Limits or Throttling

*
  • M
Resource Exhaustion

*
  • M
Misinterpretation of Input

*
  • M
Arbitrary Code Injection

*
  • M
Resource Exhaustion

*
  • M
Information Exposure

*
  • M
Resource Exhaustion

*
  • M
Loop with Unreachable Exit Condition ('Infinite Loop')

<0:9.2.10-17.el8_10
  • M
Improper Certificate Validation

*
  • M
Cross-site Scripting (XSS)

*
  • M
Buffer Access with Incorrect Length Value

*
  • M
Cross-site Scripting (XSS)

*
  • M
Authentication Bypass

*
  • M
Information Exposure

*
  • M
Allocation of Resources Without Limits or Throttling

*
  • M
Improper Input Validation

*
  • H
Memory Leak

<0:9.2.10-16.el8_10
  • H
Authorization Bypass Through User-Controlled Key

<0:9.2.10-16.el8_10