Ref# ADV2025_152 | Date: Jun 17th 2025

---

Grafana has published a security advisory to address vulnerabilities affecting the following products on May 21, 2025. It is recommended that you take the necessary precautions to ensure your products are always protected.

• Grafana – versions prior to 11.2, 11.3, 11.4, 11.5, 11.6 and 12.0

For more information on these updates, you can follow this URL:

https://grafana.com/blog/2025/05/21/grafana-security-release-high-severity-security-fix-for-cve-2025-4123/

The Guyana National CIRT recommends that users and administrators review these updates and apply them where necessary.

PDF Download: Grafana Security Advisory

References 

• Grafana Blog (2025, May 21). Retrieved from Grafana. https://grafana.com/blog/2025/05/21/grafana-security-release-high-severity-security-fix-for-cve-2025-4123/
• Grafana security advisory. (2025, June 16). Retrieved from Canadian Centre for Cyber Security. https://www.cyber.gc.ca/en/alerts-advisories/grafana-security-advisory-av25-349