grafana

v13.0.1+security-01 Security

This release includes 10 security fixes for security teams reviewing exposed deployments.

Published 22d Dashboards & Visualization

View tool

✓ No known CVEs patched

Read the diff → Tool health → What is this tool? →

This release patches 10 known CVEs

Topics

alerting analytics business-intelligence web data-visualization elasticsearch

+7 more

go grafana influxdb prometheus monitoring mysql postgresql

ReleasePort's take

Moderate signal

editorial:auto 13d

Grafana v13.0.1+security-01 patches vulnerability CVE-2026-28374.

Why it matters: Patch immediately to remediate CVE‑2026‑28374, which has a severity score of 50.

Summary

AI summary

CVE-2026 security fixes applied

Changes in this release

Type	Severity	Summary	CVE
Security	Medium	Fixes vulnerability CVE-2026-28374. Fixes vulnerability CVE-2026-28374. Source: llm_adapter@2026-05-21 Confidence: low	—

Full changelog

Download page
What's new highlights

Security: CVE-2026-28374
Security: CVE-2026-28376
Security: CVE-2026-28383
Security: CVE-2026-28380
Security: CVE-2026-33376
Security: CVE-2026-28379
Security: CVE-2026-33377
Security: CVE-2026-33378
Security: CVE-2026-33381
Security: CVE-2026-33380

Security Fixes

CVE-2026-28374
CVE-2026-28376
CVE-2026-28383
CVE-2026-28380
CVE-2026-33376
CVE-2026-28379
CVE-2026-33377
CVE-2026-33378
CVE-2026-33381
CVE-2026-33380

View diff on GitHub

Weekly OSS security release digest.

The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.

No spam, unsubscribe anytime.

Share this release

Share on X Share on Bluesky

Track grafana

Get notified when new releases ship.

About grafana

The open and composable observability and data visualization platform. Visualize metrics, logs, and traces from multiple sources like Prometheus, Loki, Elasticsearch, InfluxDB, Postgres and many more.

grafana

ReleasePort's take

Summary

Changes in this release

Security Fixes

Related context

Related tools

Related CVEs