Grafana CVE-2026-10601

MEDIUM

N/A vendor:alpine

Grafana Information Disclosure

Lifecycle Timeline

Analysis Generated

Jun 13, 2026 - 12:02 vuln.today

DescriptionCVE.org

Alpine Linux: grafana fixed in 12.4.4-r0

AnalysisAI

Grafana packaged for Alpine Linux contains an unspecified vulnerability addressed in Alpine package version 12.4.4-r0. The upstream Grafana version corresponding to the fix is 12.4.4. …

Unlock full vulnerability intelligence

Risk assessment & exploitation conditions
Attack chain visualization
Remediation with exact patch versions
Threat intelligence from 22 sources
Personal watchlist & email alerts

Continue with Google Continue with GitHub

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access

Unknown vulnerability triggered

Exploit

Unspecified impact on Grafana instance

Access

Unknown vulnerability triggered

Exploit

Unspecified impact on Grafana instance

Vulnerability AssessmentAI

Exploitation	Exploitation conditions cannot be determined from the available data. … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment	Risk assessment is severely limited by the absence of a CVSS vector, CVSS score, CWE classification, EPSS probability, KEV status, and any technical description of the vulnerability. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario	An exploit scenario cannot be constructed from available data. The attack vector, required access level, and exploitable component are entirely unknown. …
Remediation	Vendor-released patch: Alpine package grafana 12.4.4-r0. … Detailed patch versions, workarounds, and compensating controls in full report.