On October 18, 2024, Grafana Labs disclosed a vulnerability introduced in Grafana 11 that may allow attackers to execute arbitrary code on affected systems, potentially leading to complete system compromise.
This vulnerability is assigned the CVE ID CVE-2024-9264 and classified as Critical severity with a CVSS score of 9.9. For more information about the technical details of the vulnerability, refer to Grafana's official advisory.
Product Ranges | Product | Impacted | Mitigated | Patch Status |
---|---|---|---|---|
IONOS Cloud infrastructure and services do not utilize the vulnerable version of Grafana, so they are not impacted.
If you are using custom images, we advise you to refer to the information provided by the Operating System (OS) vendor to address any concerns from this reported issue.
If you have further questions or concerns about this vulnerability, contact IONOS Cloud Support.
Observability Products
No
Not Applicable
Not Applicable
Observability Products
No
Not Applicable
Not Applicable