Grafana security release: Medium severity security fix for CVE-2024-9476
Today we are releasing Grafana 11.3.0+security-01 and 11.2.3+security-01, which include a medium severity security fix. If you are affected, we...
Read more
Grafana security release: Critical severity fix for CVE-2024-9264
Today we rolled out patch releases for Grafana 11.0.x, 11.1.x, and 11.2.x that include a critical severity security fix. If you are affected, we...
Read more
Grafana security release: Medium severity fix for CVE-2024-8118
Today we are releasing Grafana 11.2.1, 11.1.6, 11.0.5, 10.4.9, and 10.3.10, which include a medium severity security fix. If you are affected, we...
Read more
Grafana Alloy and Grafana Agent Flow security release: High severity fix for CVE-2024-8975 and...
Today we released Grafana Alloy v1.4.1 and v1.3.4 with the fix for CVE-2024-8975. This is a high severity issue that applies to Grafana Alloy Windows...
Read more
Grafana security release: Medium severity security fix for CVE-2024-6837
Today we are releasing Grafana 11.1.4, 11.0.3, 10.4.7, which include a medium severity security fix. If you are affected, we recommend that you...
Read more
How to integrate Okta logs with Grafana Loki for enhanced SIEM capabilities
Don't write code to fetch Okta logs. Instead, use the Okta logs collector, along with Grafana Alloy and Grafana Loki, to do it for you and start...
Read more
An overview of Grafana SSO: Benefits, recent updates, and best practices to get started
As organizations extend their use of Grafana, efficient and secure authentication is essential. Here’s how to set up Grafana SSO today — and why it’s...
Read more
How to authenticate with third-party APIs in your Grafana app plugin
Learn how to securely authenticate against third-party APIs within your Grafana app plugin to ensure that your integrations are not only powerful,...
Read more
Grafana Labs bug bounty: What you need to know about our new partnership with Intigriti
Grafana Labs is partnering with Intigriti, a leading bug bounty platform, to expand our bug bounty program in a scalable, sustainable way.
Read more
Grafana security update: Grafana Loki and unintended data write attempts to Amazon S3 buckets
We discovered the Grafana Loki Helm chart had a default configuration that could potentially lead to unintended requests to third-party Amazon S3...
Read more
Data source security in Grafana: Best practices and what to avoid
A security report claiming there’s a SQL injection attack in Grafana is incorrect. It is the intended and documented behavior for authenticated users...
Read more
Grafana Cloud security: Three common cloud security myths debunked
Learn how Grafana Labs maintains the highest standards of data privacy and security with Grafana Cloud, our fully managed observability platform.
Read more
Grafana security release: Medium severity security fix for CVE-2024-1442
We have released Grafana 10.4, 10.3.4, 10.2.5, 10.1.8, 10.0.12 and 9.5.17, which include a medium severity security fix. If you are affected, we...
Read more
Grafana security release: Medium severity security fix for CVE-2023-6152
Today we are releasing Grafana 10.3.3, 10.2.4, 10.1.7, 10.0.11 and 9.5.16, which include a medium severity security fix. If you are affected, we...
Read more
New in Grafana roles: Manage user permissions better with 'No basic role'
With the new 'No basic role' in Grafana, you'll improve access control and the overall security of your Grafana instance.
Read more