GLOBAL SITUATIONMONITORING

464 published briefsUTCTue, Mar 24 09:31:31

Intelligence Tag

Grafana Security

Security vulnerabilities and updates related to Grafana.

1 intelligence brief← Intelligence Hub

Grafana Patches CVSS 10.0 SCIM Flaw Enabling Impersonation and Privilege Escalation

Grafana has issued urgent security updates for a critical vulnerability in its SCIM provisioning feature, carrying a maximum CVSS score of 10.0. This flaw (CVE-2025-41115) could allow attackers to escalate privileges or impersonate users, especially in Grafana versions 12.x where SCIM provisioning is active, leading to a newly provisioned user being treated as an existing…

Elles De Yeager

Nov 23, 2025

1–2 minutes