CVE-2026-15583 PUBLISHED

SSRF (confused deputy) in Grafana MCP Server via X-Grafana-URL header

Assigner: GRAFANA
Reserved: 13.07.2026 Published: 15.07.2026 Updated: 15.07.2026

A confused-deputy flaw in Grafana MCP Server allows an unauthenticated remote attacker to exfiltrate the server's environment-configured Grafana service-account token by supplying a crafted X-Grafana-URL request header. This also enables SSRF against arbitrary internal services, including cloud metadata endpoints.

Metrics

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N
CVSS Score: 8.6

Product Status

Vendor Grafana
Product Grafana MCP Server
Versions Default: unaffected
  • affected from 0.0.0 to 0.17.1 (incl.)

Credits

  • cybersec42 finder

References