VulnerableCode Package Details - pkg:rpm/redhat/grafana@7.5.9-4?arch=el8

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:rpm/redhat/grafana@7.5.9-4?arch=el8

Essentials
History (5)

purl	pkg:rpm/redhat/grafana@7.5.9-4?arch=el8

Next non-vulnerable version	None.
Latest non-vulnerable version	None.
Risk	10.0

Vulnerabilities affecting this package (5)

Vulnerability	Summary	Fixed by
VCID-35du-rm88-k7bw Aliases: CVE-2021-33195	Multiple vulnerabilities have been found in Go, the worst of which could result in remote code execution.	There are no reported fixed by versions.
VCID-7ahs-f1qh-g7an Aliases: CVE-2021-3114	Multiple vulnerabilities have been found in Go, the worst of which could result in remote code execution.	There are no reported fixed by versions.
VCID-ayxa-s9j4-k7hd Aliases: CVE-2021-34558	Multiple vulnerabilities have been found in Go, the worst of which could result in remote code execution.	There are no reported fixed by versions.
VCID-vv32-p75k-qfc6 Aliases: CVE-2021-27358 GHSA-h5rh-w6vm-9ghc	Denial of service in Grafana The snapshot feature in Grafana before 7.4.2 can allow an unauthenticated remote attackers to trigger a Denial of Service via a remote API call if a commonly used configuration is set. ### Specific Go Packages Affected github.com/grafana/grafana/pkg/middleware	There are no reported fixed by versions.
VCID-z1ct-cecz-mqer Aliases: CVE-2021-33197	Multiple vulnerabilities have been found in Go, the worst of which could result in remote code execution.	There are no reported fixed by versions.

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-01T14:03:26.148940+00:00	RedHat Importer	Affected by	VCID-7ahs-f1qh-g7an	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3114.json	38.0.0
2026-04-01T14:03:10.426054+00:00	RedHat Importer	Affected by	VCID-vv32-p75k-qfc6	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-27358.json	38.0.0
2026-04-01T14:02:16.939563+00:00	RedHat Importer	Affected by	VCID-35du-rm88-k7bw	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-33195.json	38.0.0
2026-04-01T14:02:14.634212+00:00	RedHat Importer	Affected by	VCID-z1ct-cecz-mqer	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-33197.json	38.0.0
2026-04-01T14:01:54.877861+00:00	RedHat Importer	Affected by	VCID-ayxa-s9j4-k7hd	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-34558.json	38.0.0