CVE-2024-11741
unknown
CVSS v3
—
CVSS v2
—
VIR risk
—
Description
Grafana Alerting VictorOps integration could be exposed to users with Viewer permission in github.com/grafana/grafana
Predictions
Exploit likelihood
30%
Patch ETA
—
Heuristic predictions, AS-IS, for prioritization only.
Mitigations
Vendor advisory: suse — https://www.suse.com/security/cve/CVE-2024-11741.html
OS impact
| OS | Version | Status | Fixed in |
|---|---|---|---|
| sles | affected | |
Package impact
| Ecosystem | Package | Vulnerable | Fixed |
|---|---|---|---|
| Go | github.com/grafana/grafana | >=11.4.0,<11.4.1 | 11.4.1 |
| Go | github.com/grafana/grafana | >=11.3.0,<11.3.3 | 11.3.3 |
| Go | github.com/grafana/grafana | >=11.2.0,<11.2.6 | 11.2.6 |
| Go | github.com/grafana/grafana | >=11.1.0,<11.1.11 | 11.1.11 |
| Go | github.com/grafana/grafana | >=11.0.0,<11.0.11 | 11.0.11 |
| Go | github.com/grafana/grafana | >=1.9.2,<10.4.15 | 10.4.15 |
| Go | github.com/grafana/grafana | <0.0.0-20250129224826-70073427041e | 0.0.0-20250129224826-70073427041e |
| Go | github.com/grafana/grafana | >=0.0.0,<1.9.2-0.20250129224826-70073427041e | 1.9.2-0.20250129224826-70073427041e |
| Go | github.com/grafana/grafana | | |
References
- https://nvd.nist.gov/vuln/detail/CVE-2024-11741
- https://github.com/grafana/grafana/commit/70073427041e15c353e0d467b714527584765aea
- https://github.com/grafana/grafana
- https://grafana.com/security/security-advisories/cve-2024-11741
- https://pkg.go.dev/vuln/GO-2025-3438
- https://security.netapp.com/advisory/ntap-20250509-0006
- https://github.com/advisories/GHSA-wxcc-2f3q-4h58
- https://www.suse.com/security/cve/CVE-2024-11741.html
Verify integrity in audit chain (admin only). AS-IS.