A vulnerability categorized as problematic has been discovered in Grafana up to 11.6.13/12.1.9/12.2.7/12.3.5/12.4.1. Affected by this vulnerability is an unknown functionality of the component Public Dashboard Deletion Endpoint. Such manipulation leads to improper isolation or compartmentalization.

This vulnerability is documented as CVE-2026-28378. The attack can be executed remotely. There is not any exploit available.