Grafana security advisory (AV26-285)

Serial number: AV26-285
Date: March 26, 2026

On March 25, 2026, Grafana published a security advisory to address vulnerabilities in the following products:

• Grafana – versions prior to 12.4.2, 12.3.6, 12.2.8, 12.1.10 and 11.6.14

The Cyber Centre encourages users and administrators to review the provided web links and apply the necessary updates.

• Grafana security release: Critical and high severity security fixes for CVE-2026-27876 and CVE-2026-27880
• Grafana Blog