grafana/grafana:latest
1 functions
·
558 packages
·
18 libraries
·
34 OS pkgs
Press
Esc
to close
54
Total CVEs
→
15
Reachable
Severity
Total
Reach
Noise
High
11
4
64%
Medium
31
11
65%
Low
2
0
100%
Unknown
10
0
100%
Reachable Vulnerabilities
Select a CVE to view its dependency chain.
CVE-2026-34986
HIGH
7.5
Build Info
github.com/go-jose/go-jose/v4
v4.1.3
Fix: 4.1.4
github.com/grafana/grafana
→
grafana
→
github.com/go-jose/go-jose/v4
CVE-2026-39883
HIGH
7.3
Build Info
go.opentelemetry.io/otel/sdk
v1.39.0
Fix: 1.43.0
github.com/grafana/grafana
→
grafana
→
go.opentelemetry.io/otel/sdk
CVE-2026-24051
HIGH
7.0
Build Info
go.opentelemetry.io/otel/sdk
v1.39.0
Fix: 1.40.0
github.com/grafana/grafana
→
grafana
→
go.opentelemetry.io/otel/sdk
GHSA-68m9-983m-f3v5
MEDIUM
6.5
Build Info
github.com/openfga/openfga
v1.11.3
Fix: 1.14.0
github.com/grafana/grafana
→
grafana
→
github.com/openfga/openfga
GHSA-xmrv-pmrh-hhx2
MEDIUM
5.9
Build Info
github.com/aws/aws-sdk-go-v2/aws/protocol/eventstream
v1.6.11
Fix: 1.7.8
github.com/grafana/grafana
→
grafana
→
github.com/aws/aws-sdk-go-v2/aws/protocol/eventstream
GHSA-xmrv-pmrh-hhx2
MEDIUM
5.9
Build Info
github.com/aws/aws-sdk-go-v2/service/cloudwatchlogs
v1.51.0
Fix: 1.65.0
github.com/grafana/grafana
→
grafana
→
github.com/aws/aws-sdk-go-v2/service/cloudwatchlogs
GHSA-xmrv-pmrh-hhx2
MEDIUM
5.9
Build Info
github.com/aws/aws-sdk-go-v2/service/s3
v1.84.0
Fix: 1.97.3
github.com/grafana/grafana
→
grafana
→
github.com/aws/aws-sdk-go-v2/service/s3
CVE-2026-33729
MEDIUM
5.8
Build Info
github.com/openfga/openfga
v1.11.3
Fix: 1.13.1
github.com/grafana/grafana
→
grafana
→
github.com/openfga/openfga
CVE-2026-34040
HIGH
8.8
Build Info
github.com/moby/moby
v28.0.1+incompatible
No fix
github.com/grafana/grafana
→
grafana
→
github.com/moby/moby
CVE-2026-34972
MEDIUM
5.0
Build Info
github.com/openfga/openfga
v1.11.3
Fix: 1.14.0
github.com/grafana/grafana
→
grafana
→
github.com/openfga/openfga
CVE-2026-39882
MEDIUM
5.3
Build Info
go.opentelemetry.io/otel/exporters/otlp/otlplog/otlploghttp
v0.12.2
Fix: 0.19.0
github.com/grafana/grafana
→
grafana
→
go.opentelemetry.io/otel/exporters/otlp/otlplog/otlploghttp
CVE-2026-39882
MEDIUM
5.3
Build Info
go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp
v1.39.0
Fix: 1.43.0
github.com/grafana/grafana
→
grafana
→
go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp
CVE-2026-39882
MEDIUM
5.3
Build Info
go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp
v1.39.0
Fix: 1.43.0
github.com/grafana/grafana
→
grafana
→
go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp
CVE-2026-33997
MEDIUM
6.8
Build Info
github.com/moby/moby
v28.0.1+incompatible
No fix
github.com/grafana/grafana
→
grafana
→
github.com/moby/moby
CVE-2026-33817
MEDIUM
6.2
Build Info
go.etcd.io/bbolt
v1.4.3
No fix
github.com/grafana/grafana
→
grafana
→
go.etcd.io/bbolt
CVE-2026-34986
HIGH
7.5
Build Info
Go JOSE Panics in JWE decryption
Fix available
4.1.4
CVE-2026-34986
HIGH
7.5
Build Info
Go JOSE Panics in JWE decryption
Fix available
4.1.4
54
Total CVEs
→
15
Reachable
Severity
Total
Reach
Noise
High
11
4
64%
Medium
31
11
65%
Low
2
0
100%
Unknown
10
0
100%
Reachable Vulnerabilities
Select a CVE to view its dependency chain.
CVE-2026-34986
HIGH
7.5
Build Info
github.com/go-jose/go-jose/v4
v4.1.3
Fix: 4.1.4
github.com/grafana/grafana
→
grafana
→
github.com/go-jose/go-jose/v4
CVE-2026-39883
HIGH
7.3
Build Info
go.opentelemetry.io/otel/sdk
v1.39.0
Fix: 1.43.0
github.com/grafana/grafana
→
grafana
→
go.opentelemetry.io/otel/sdk
CVE-2026-24051
HIGH
7.0
Build Info
go.opentelemetry.io/otel/sdk
v1.39.0
Fix: 1.40.0
github.com/grafana/grafana
→
grafana
→
go.opentelemetry.io/otel/sdk
GHSA-68m9-983m-f3v5
MEDIUM
6.5
Build Info
github.com/openfga/openfga
v1.11.3
Fix: 1.14.0
github.com/grafana/grafana
→
grafana
→
github.com/openfga/openfga
GHSA-xmrv-pmrh-hhx2
MEDIUM
5.9
Build Info
github.com/aws/aws-sdk-go-v2/aws/protocol/eventstream
v1.6.11
Fix: 1.7.8
github.com/grafana/grafana
→
grafana
→
github.com/aws/aws-sdk-go-v2/aws/protocol/eventstream
GHSA-xmrv-pmrh-hhx2
MEDIUM
5.9
Build Info
github.com/aws/aws-sdk-go-v2/service/cloudwatchlogs
v1.51.0
Fix: 1.65.0
github.com/grafana/grafana
→
grafana
→
github.com/aws/aws-sdk-go-v2/service/cloudwatchlogs
GHSA-xmrv-pmrh-hhx2
MEDIUM
5.9
Build Info
github.com/aws/aws-sdk-go-v2/service/s3
v1.84.0
Fix: 1.97.3
github.com/grafana/grafana
→
grafana
→
github.com/aws/aws-sdk-go-v2/service/s3
CVE-2026-33729
MEDIUM
5.8
Build Info
github.com/openfga/openfga
v1.11.3
Fix: 1.13.1
github.com/grafana/grafana
→
grafana
→
github.com/openfga/openfga
CVE-2026-34040
HIGH
8.8
Build Info
github.com/moby/moby
v28.0.1+incompatible
No fix
github.com/grafana/grafana
→
grafana
→
github.com/moby/moby
CVE-2026-34972
MEDIUM
5.0
Build Info
github.com/openfga/openfga
v1.11.3
Fix: 1.14.0
github.com/grafana/grafana
→
grafana
→
github.com/openfga/openfga
CVE-2026-39882
MEDIUM
5.3
Build Info
go.opentelemetry.io/otel/exporters/otlp/otlplog/otlploghttp
v0.12.2
Fix: 0.19.0
github.com/grafana/grafana
→
grafana
→
go.opentelemetry.io/otel/exporters/otlp/otlplog/otlploghttp
CVE-2026-39882
MEDIUM
5.3
Build Info
go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp
v1.39.0
Fix: 1.43.0
github.com/grafana/grafana
→
grafana
→
go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp
CVE-2026-39882
MEDIUM
5.3
Build Info
go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp
v1.39.0
Fix: 1.43.0
github.com/grafana/grafana
→
grafana
→
go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp
CVE-2026-33997
MEDIUM
6.8
Build Info
github.com/moby/moby
v28.0.1+incompatible
No fix
github.com/grafana/grafana
→
grafana
→
github.com/moby/moby
CVE-2026-33817
MEDIUM
6.2
Build Info
go.etcd.io/bbolt
v1.4.3
No fix
github.com/grafana/grafana
→
grafana
→
go.etcd.io/bbolt
