CVE-2025-3260

CVSS v2.0

8.7

High

Vector

AV:N/AC:L/Au:S/C:C/I:C/A:P

Name of the Vulnerable Software and Affected Versions Grafana (affected versions not specified)

Description The issue involves a high-severity fix, likely related to authentication bypass or remote code execution, though the exact impact is undisclosed. There is no information provided about the estimated number of potentially affected devices worldwide or details about real-world incidents where this issue was exploited.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

RCE

Improper Authorization

Incorrect Authorization

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-285CWE-863

Related Identifiers

BDU:2025-06343

BIT-GRAFANA-2025-3260

CVE-2025-3260

GHSA-3PX7-C4J3-576R

GHSA-9J65-RV5X-4VRF

GO-2025-3740

GO-2025-3742

OPENSUSE-SU-2025:15225-1

Affected Products

Grafana

Red Os

CVE-2025-3260

Weakness Enumeration

Related Identifiers

Affected Products

References · 68