← ExploitWatch
HomeExploited Vulnerabilities

CVE-2021-43798 — Actively Exploited: Grafana (Grafana Labs)

Grafana contains a path traversal vulnerability that could allow access to local files.

CVE IDCVE-2021-43798
VendorGrafana Labs
ProductGrafana
Vulnerability nameGrafana Path Traversal Vulnerability
Date added2025-10-09
Remediation due2025-10-30
Known ransomware useUnknown
Required actionApply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
DescriptionGrafana contains a path traversal vulnerability that could allow access to local files.
SourceCISA Known Exploited Vulnerabilities

🔍 Search all exploited vulnerabilities →