Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
Grafana Improper Authorization Vulnerability - CVE-2026-21724 - Vulnerability Database
Grafana

Grafana Improper Authorization Vulnerability - CVE-2026-21724

Medium
Reference: CVE-2026-21724
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2026-21724
Title: Grafana Improper Authorization Vulnerability
Overview:

A vulnerability has been discovered in Grafana OSS where an authorization bypass in the provisioning contact points API allows users with Editor role to modify protected webhook URLs without the required alert.notifications.receivers.protected:write permission.