Grafana security update: Medium severity security release for CVE-2025-3415
Today we are releasing security patches for Grafana 12.0.1, 11.6.2, 11.5.5, 11.4.5, 11.3.7, 11.2.10, and 10.4.19 that include a medium severity...
Read more
Grafana security release: Medium and high severity security fixes for CVE-2025-4123 and...
Today we are releasing Grafana 12.0.1, 11.6.2, 11.5.5, 11.4.5, 11.3.7, 11.2.10, and 10.4.19, which include medium and high severity security fixes. If...
Read more
Grafana security release: High severity security fix for CVE-2025-4123
Today we are releasing Grafana 12.0.0+security-01, as well as security patches for all supported versions for a high severity security fix. If you are...
Read more
Grafana security update: post-incident review for GitHub workflow vulnerability and what's next
Our investigation wrapped up on May 12, and we have confirmed that there has been no code modification, unauthorized access to production systems,...
Read more
Introducing SCIM provisioning in Grafana: Enterprise-grade user management made simple
Use SCIM to manage users and teams in Grafana more efficiently. Bring automated user lifecycle management and enhanced security to your observability...
Read more
Grafana security update: no customer impact from GitHub workflow vulnerability
On April 26, an unauthorized user exploited a vulnerability with a GitHub workflow to gain unauthorized access to tokens, all of which have now been...
Read more
Grafana security release: Medium and high severity fixes for CVE-2025-3260, CVE-2025-2703,...
Today we are releasing security patches for Grafana 11.6.0, 11.5.3, 11.4.3, 11.3.5, 11.2.8, and 10.4.17, which include medium and high severity...
Read more
How to redact secrets from logs with Grafana Alloy and Loki
Learn about a new experimental component in Grafana Alloy that can help find and redact sensitive information before it reaches Grafana Loki.
Read more
Grafana Play updates: recent growth, new privacy policies, and more
Grafana Play is the go-to platform to learn and experiment with Grafana dashboards. Here’s a look at some recent updates we’re making related to user...
Read more
How to securely connect Grafana to Google BigQuery using Workload Identity Federation
Learn how to use Workload Identity Federation to securely connect a Grafana instance running on GKE to the Google BigQuery service.
Read more
Grafana security release: Medium severity security fix for CVE-2024-9476
Today we are releasing Grafana 11.3.0+security-01 and 11.2.3+security-01, which include a medium severity security fix. If you are affected, we...
Read more
Grafana security release: Critical severity fix for CVE-2024-9264
Today we rolled out patch releases for Grafana 11.0.x, 11.1.x, and 11.2.x that include a critical severity security fix. If you are affected, we...
Read more
Grafana security release: Medium severity fix for CVE-2024-8118
Today we are releasing Grafana 11.2.1, 11.1.6, 11.0.5, 10.4.9, and 10.3.10, which include a medium severity security fix. If you are affected, we...
Read more
Grafana Alloy and Grafana Agent Flow security release: High severity fix for CVE-2024-8975 and...
Today we released Grafana Alloy v1.4.1 and v1.3.4 with the fix for CVE-2024-8975. This is a high severity issue that applies to Grafana Alloy Windows...
Read more
Grafana security release: Medium severity security fix for CVE-2024-6837
Today we are releasing Grafana 11.1.4, 11.0.3, 10.4.7, which include a medium severity security fix. If you are affected, we recommend that you...
Read more