Unauthorized access to arbitrary endpoints in Grafana codebase
CVE-2022-39328

Feb 27, 2023

Jonathan Kaftzan
VP Marketing

Nov 11, 2022 – Grafana Labs published a security advisory for a new critical vulnerability in its open-source product. The vulnerability, marked as CVE-2022-39328, enables attackers to bypass authorization on arbitrary service endpoints.

ARMO vs. Wiz: Bridging the Gap in Cloud Runtime Security

The recent news about Google’s multi-billion-dollar acquisition of Wiz has sparked widespread conversation across the...

Oshrat Nir

Head of Product Marketing

Apr 24, 2025

io_uring Is Back, This Time as a Rootkit

ARMO researchers reveal a major blind spot in Linux runtime security tools caused by the...

Amit Schendel

Head of Security Research

Apr 23, 2025

ARMO CADR Uncovers Multiple Crypto Miner Attack Operations

Introduction: Luring in the Threat Actors The best way to understand real-world attacks is to...

Amit Schendel

Head of Security Research

Unauthorized access to arbitrary endpoints in Grafana codebase
CVE-2022-39328

Share

Related Articles

ARMO vs. Wiz: Bridging the Gap in Cloud Runtime Security

io_uring Is Back, This Time as a Rootkit

ARMO CADR Uncovers Multiple Crypto Miner Attack Operations

Company

ARMO Platfrom

Cloud Security Resources

Unauthorized access to arbitrary endpoints in Grafana codebase CVE-2022-39328

Share

Related Articles

ARMO vs. Wiz: Bridging the Gap in Cloud Runtime Security

io_uring Is Back, This Time as a Rootkit

ARMO CADR Uncovers Multiple Crypto Miner Attack Operations

Company

ARMO Platfrom

Cloud Security Resources

Unauthorized access to arbitrary endpoints in Grafana codebase
CVE-2022-39328