[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2022-21713":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T08:55:32.481Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":26,"aliases":27,"duplicate_of":9,"upstream":30,"downstream":31,"duplicates":52,"related":53,"reserved_at":9,"published_at":61,"modified_at":62,"state":63,"summary":64,"references_raw":73,"kevs":143,"epss":144,"epss_history":147,"metrics":415,"affected":430},"CVE-2022-21713","Grafana is an open-source platform for monitoring and observability. Affected versions of Grafana expose multiple API endpoints which do not properly handle user authorization. `/teams/:teamId` will allow an authenticated attacker to view unintended data by querying for the specific team ID, `/teams/:search` will allow an authenticated attacker to search for teams and see the total number of available teams, including for those teams that the user does not have access to, and `/teams/:teamId/members` when editors_can_admin flag is enabled, an authenticated attacker can see unintended data by querying for the specific team ID. Users are advised to upgrade as soon as possible. There are no known workarounds for this issue.",null,[11,20],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-863","Incorrect Authorization","The product performs an authorization check when an actor attempts to access a resource or perform an action, but it does not correctly perform the check.","weakness","Incomplete","Class","High",[],{"_key":21,"id":21,"name":22,"description":23,"type":15,"status":16,"abstraction":24,"likelihood_of_exploit":18,"capec":25},"CWE-639","Authorization Bypass Through User-Controlled Key","The system's authorization functionality does not prevent one user from gaining access to another user's data or record by modifying the key value identifying the data.","Base",[],[],[28,29],"GHSA-63g3-9jq3-mccv","BIT-grafana-2022-21713",[],[32,34,36,38,40,42,44,46,48,50],{"_key":33},"UBUNTU-CVE-2022-21713",{"_key":35},"SUSE-SU-2022:2134-1",{"_key":37},"SUSE-SU-2022:3676-1",{"_key":39},"SUSE-SU-2024:0191-1",{"_key":41},"SUSE-FU-2022:1419-1",{"_key":43},"SUSE-SU-2022:1396-1",{"_key":45},"SUSE-SU-2022:3765-1",{"_key":47},"OPENSUSE-SU-2024:11836-1",{"_key":49},"RHSA-2022:7519",{"_key":51},"RHSA-2022:8057",[],[54,55,56,57,58,59,60],{"_key":35},{"_key":37},{"_key":39},{"_key":41},{"_key":43},{"_key":45},{"_key":47},"2022-02-08T20:50:17.000Z","2025-04-23T19:06:38.430Z","Modified",{"cisa_kev":65,"cisa_ransomware":65,"cisa_vendor":9,"epss_severity":66,"epss_score":67,"severity":68,"severity_score":69,"severity_version":70,"severity_source":71,"severity_vector":72,"severity_status":63},false,"low",0.00185,"medium",4.3,"v3.1","cve.org","CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",[74,82,91,96,100,105,109,113,118,123,127,131,135,139],{"url":75,"sources":76,"tags":78},"https://grafana.com/blog/2022/02/08/grafana-7.5.15-and-8.3.5-released-with-moderate-severity-security-fixes/",[71,77],"nvd",[79,80,81],"X Refsource MISC","Release Notes","Vendor Advisory",{"url":83,"sources":84,"tags":86},"https://github.com/grafana/grafana/pull/45083",[71,77,85],"osv_go",[79,87,88,89,90],"Issue Tracking","Patch","Third Party Advisory","WEB",{"url":92,"sources":93,"tags":94},"https://github.com/grafana/grafana/security/advisories/GHSA-63g3-9jq3-mccv",[71,77,85],[95,80,89,90],"X Refsource CONFIRM",{"url":97,"sources":98,"tags":99},"https://security.netapp.com/advisory/ntap-20220303-0005/",[71,77],[95,89],{"url":101,"sources":102,"tags":103},"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HLAQRRGNSO5MYCPAXGPH2OCSHOGHSQMQ/",[71,77],[81,104],"X Refsource FEDORA",{"url":106,"sources":107,"tags":108},"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2PFW6Q2LXXWTFRTMTRN4ZGADFRQPKJ3D/",[71,77],[81,104],{"url":110,"sources":111,"tags":112},"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/36GUEPA5TPSC57DZTPYPBL6T7UPQ2FRH/",[71,77],[81,104],{"url":114,"sources":115,"tags":116},"https://nvd.nist.gov/vuln/detail/CVE-2022-21713",[85],[117],"Advisory",{"url":119,"sources":120,"tags":121},"https://github.com/grafana/grafana",[85],[122],"PACKAGE",{"url":124,"sources":125,"tags":126},"https://grafana.com/blog/2022/02/08/grafana-7.5.15-and-8.3.5-released-with-moderate-severity-security-fixes",[85],[90],{"url":128,"sources":129,"tags":130},"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/2PFW6Q2LXXWTFRTMTRN4ZGADFRQPKJ3D",[85],[90],{"url":132,"sources":133,"tags":134},"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/36GUEPA5TPSC57DZTPYPBL6T7UPQ2FRH",[85],[90],{"url":136,"sources":137,"tags":138},"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HLAQRRGNSO5MYCPAXGPH2OCSHOGHSQMQ",[85],[90],{"url":140,"sources":141,"tags":142},"https://security.netapp.com/advisory/ntap-20220303-0005",[85],[90],[],{"date":145,"score":67,"percentile":146},"2026-06-04",0.4001,[148,152,155,157,160,162,165,168,171,174,177,180,183,186,189,193,196,199,202,204,207,210,213,216,218,221,224,228,231,234,237,240,243,246,249,252,255,258,261,264,267,270,273,276,279,282,285,288,291,293,296,299,302,305,309,312,315,318,321,324,327,330,333,336,339,342,345,348,351,353,356,359,362,365,368,370,373,376,379,382,385,388,391,394,397,400,403,406,409,412],{"date":149,"score":150,"percentile":151},"2025-11-04",0.00128,0.32989,{"date":153,"score":150,"percentile":154},"2025-11-05",0.32969,{"date":156,"score":150,"percentile":154},"2025-11-06",{"date":158,"score":150,"percentile":159},"2025-11-07",0.32986,{"date":161,"score":150,"percentile":159},"2025-11-08",{"date":163,"score":150,"percentile":164},"2025-11-09",0.32962,{"date":166,"score":150,"percentile":167},"2025-11-10",0.32909,{"date":169,"score":150,"percentile":170},"2025-11-11",0.32933,{"date":172,"score":150,"percentile":173},"2025-11-12",0.32979,{"date":175,"score":150,"percentile":176},"2025-11-13",0.32995,{"date":178,"score":150,"percentile":179},"2025-11-14",0.32998,{"date":181,"score":150,"percentile":182},"2025-11-15",0.32996,{"date":184,"score":150,"percentile":185},"2025-11-16",0.32968,{"date":187,"score":150,"percentile":188},"2025-11-17",0.32941,{"date":190,"score":191,"percentile":192},"2025-11-18",0.00404,0.58206,{"date":194,"score":191,"percentile":195},"2025-11-19",0.58221,{"date":197,"score":191,"percentile":198},"2025-11-20",0.5821,{"date":200,"score":150,"percentile":201},"2025-11-21",0.32984,{"date":203,"score":150,"percentile":151},"2025-11-22",{"date":205,"score":150,"percentile":206},"2025-11-23",0.32956,{"date":208,"score":150,"percentile":209},"2025-11-24",0.3293,{"date":211,"score":150,"percentile":212},"2025-11-25",0.32927,{"date":214,"score":150,"percentile":215},"2025-11-26",0.32926,{"date":217,"score":150,"percentile":170},"2025-11-27",{"date":219,"score":150,"percentile":220},"2025-11-28",0.32914,{"date":222,"score":150,"percentile":223},"2025-11-29",0.32897,{"date":225,"score":226,"percentile":227},"2025-11-30",0.00142,0.34899,{"date":229,"score":226,"percentile":230},"2025-12-01",0.35004,{"date":232,"score":226,"percentile":233},"2025-12-02",0.35013,{"date":235,"score":226,"percentile":236},"2025-12-03",0.35012,{"date":238,"score":226,"percentile":239},"2025-12-04",0.34896,{"date":241,"score":226,"percentile":242},"2025-12-05",0.3493,{"date":244,"score":226,"percentile":245},"2025-12-06",0.34928,{"date":247,"score":226,"percentile":248},"2025-12-07",0.34902,{"date":250,"score":226,"percentile":251},"2025-12-08",0.34916,{"date":253,"score":226,"percentile":254},"2025-12-09",0.34956,{"date":256,"score":226,"percentile":257},"2025-12-10",0.35001,{"date":259,"score":226,"percentile":260},"2025-12-11",0.35022,{"date":262,"score":226,"percentile":263},"2025-12-12",0.35052,{"date":265,"score":226,"percentile":266},"2025-12-13",0.35037,{"date":268,"score":226,"percentile":269},"2025-12-14",0.35011,{"date":271,"score":226,"percentile":272},"2025-12-15",0.3497,{"date":274,"score":226,"percentile":275},"2025-12-16",0.34998,{"date":277,"score":226,"percentile":278},"2025-12-17",0.3505,{"date":280,"score":226,"percentile":281},"2025-12-18",0.35098,{"date":283,"score":226,"percentile":284},"2025-12-19",0.3512,{"date":286,"score":226,"percentile":287},"2025-12-20",0.35106,{"date":289,"score":226,"percentile":290},"2025-12-21",0.35049,{"date":292,"score":226,"percentile":260},"2025-12-22",{"date":294,"score":226,"percentile":295},"2025-12-23",0.35019,{"date":297,"score":226,"percentile":298},"2025-12-24",0.35014,{"date":300,"score":226,"percentile":301},"2025-12-25",0.35078,{"date":303,"score":226,"percentile":304},"2025-12-26",0.35059,{"date":306,"score":307,"percentile":308},"2025-12-27",0.00132,0.3366,{"date":310,"score":226,"percentile":311},"2025-12-28",0.34971,{"date":313,"score":226,"percentile":314},"2025-12-29",0.34939,{"date":316,"score":226,"percentile":317},"2025-12-30",0.34929,{"date":319,"score":226,"percentile":320},"2025-12-31",0.34984,{"date":322,"score":226,"percentile":323},"2026-01-01",0.35133,{"date":325,"score":226,"percentile":326},"2026-01-02",0.35126,{"date":328,"score":226,"percentile":329},"2026-01-03",0.3511,{"date":331,"score":226,"percentile":332},"2026-01-04",0.34957,{"date":334,"score":226,"percentile":335},"2026-01-05",0.34942,{"date":337,"score":226,"percentile":338},"2026-01-06",0.34951,{"date":340,"score":226,"percentile":341},"2026-01-07",0.34966,{"date":343,"score":226,"percentile":344},"2026-01-08",0.34995,{"date":346,"score":226,"percentile":347},"2026-01-09",0.34989,{"date":349,"score":226,"percentile":350},"2026-01-10",0.3499,{"date":352,"score":226,"percentile":311},"2026-01-11",{"date":354,"score":226,"percentile":355},"2026-01-12",0.34913,{"date":357,"score":226,"percentile":358},"2026-01-13",0.34897,{"date":360,"score":226,"percentile":361},"2026-01-14",0.34933,{"date":363,"score":226,"percentile":364},"2026-01-15",0.34923,{"date":366,"score":226,"percentile":367},"2026-01-16",0.34941,{"date":369,"score":226,"percentile":245},"2026-01-17",{"date":371,"score":226,"percentile":372},"2026-01-18",0.34869,{"date":374,"score":226,"percentile":375},"2026-01-19",0.34835,{"date":377,"score":226,"percentile":378},"2026-01-20",0.3482,{"date":380,"score":226,"percentile":381},"2026-01-21",0.34781,{"date":383,"score":226,"percentile":384},"2026-01-22",0.34758,{"date":386,"score":226,"percentile":387},"2026-01-23",0.34818,{"date":389,"score":226,"percentile":390},"2026-01-24",0.3483,{"date":392,"score":226,"percentile":393},"2026-01-25",0.34766,{"date":395,"score":226,"percentile":396},"2026-01-26",0.34679,{"date":398,"score":226,"percentile":399},"2026-01-27",0.34672,{"date":401,"score":226,"percentile":402},"2026-01-28",0.34648,{"date":404,"score":226,"percentile":405},"2026-01-29",0.3461,{"date":407,"score":226,"percentile":408},"2026-01-30",0.34599,{"date":410,"score":67,"percentile":411},"2026-01-31",0.40385,{"date":413,"score":67,"percentile":414},"2026-02-01",0.4049,[416,421,428],{"source":71,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":417,"cvss_v4_0":9},{"baseScore":69,"baseSeverity":418,"vectorString":72,"impactScore":419,"exploitabilityScore":420},"MEDIUM",2.3,7.2,{"source":77,"cvss_v2_0":422,"cvss_v3_0":9,"cvss_v3_1":427,"cvss_v4_0":9},{"baseScore":423,"baseSeverity":9,"vectorString":424,"impactScore":425,"exploitabilityScore":426},3.5,"AV:N/AC:M/Au:S/C:P/I:N/A:N",2.9,6.8,{"baseScore":69,"baseSeverity":418,"vectorString":72,"impactScore":419,"exploitabilityScore":420},{"source":85,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":429,"cvss_v4_0":9},{"baseScore":69,"baseSeverity":9,"vectorString":72,"impactScore":419,"exploitabilityScore":420},[431,443,462,482],{"ecosystem":9,"name":432,"vendor":433,"product":432,"cpe_part":434,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":435},"fedora","fedoraproject","o",[436,439,441],{"version":437,"is_range":65,"range_type":438,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"34","cpe",{"version":440,"is_range":65,"range_type":438,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"35",{"version":442,"is_range":65,"range_type":438,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"36",{"ecosystem":444,"name":445,"vendor":446,"product":447,"cpe_part":9,"purl_type":448,"purl_namespace":446,"purl_name":447,"source":9,"versions":449},"Go","github.com/grafana/grafana","github.com/grafana","grafana","golang",[450,458],{"version":451,"is_range":452,"range_type":453,"version_start":454,"version_start_type":455,"version_end":456,"version_end_type":457,"fixed_in":9},"gte5_0_0_beta1_lt7_5_15",true,"semver","5.0.0-beta1","including","7.5.15","excluding",{"version":459,"is_range":452,"range_type":453,"version_start":460,"version_start_type":455,"version_end":461,"version_end_type":457,"fixed_in":9},"gte8_0_0_lt8_3_5","8.0.0","8.3.5",{"ecosystem":9,"name":447,"vendor":447,"product":447,"cpe_part":463,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":464},"a",[465,467,470,472,474,476,478,480],{"version":466,"is_range":452,"range_type":71,"version_start":454,"version_start_type":455,"version_end":456,"version_end_type":457,"fixed_in":9},">= 5.0.0-beta1, \u003C 7.5.15",{"version":468,"is_range":452,"range_type":438,"version_start":469,"version_start_type":455,"version_end":456,"version_end_type":457,"fixed_in":9},"gte5.0.0_lt7.5.15","5.0.0",{"version":471,"is_range":452,"range_type":438,"version_start":460,"version_start_type":455,"version_end":461,"version_end_type":457,"fixed_in":9},"gte8.0.0_lt8.3.5",{"version":473,"is_range":65,"range_type":438,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.0.0:beta1",{"version":475,"is_range":65,"range_type":438,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.0.0:beta2",{"version":477,"is_range":65,"range_type":438,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.0.0:beta3",{"version":479,"is_range":65,"range_type":438,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.0.0:beta4",{"version":481,"is_range":65,"range_type":438,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.0.0:beta5",{"ecosystem":9,"name":483,"vendor":484,"product":485,"cpe_part":463,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":486},"e-series performance analyzer","netapp","e-series_performance_analyzer",[487],{"version":488,"is_range":452,"range_type":438,"version_start":9,"version_start_type":9,"version_end":489,"version_end_type":457,"fixed_in":9},"lt3.0","3.0"]