ADA Cloud: Notification of Grafana vulnerability

Dear Users,

This is to inform you about a vulnerability of type Cross Site Scripting (XSS) within Grafana (CVE-2025-4123).

Mitigation action to perform on your virtual machines can be found in the links below, if needed:
https://grafana.com/blog/2025/05/21/grafana-security-release-high-severity-security-fix-for-cve-2025-4123/
https://grafana.com/blog/2025/05/23/grafana-security-release-medium-and-high-severity-security-fixes-for-cve-2025-4123-and-cve-2025-3580/
Further informations about the vulnerability itself, can be found here: https://www.cve.org/CVERecord?id=CVE-2025-4123

If you have any questions, please contact us at the mail [email protected]

Best regards,
HPC User Support @CINECA