Grafana released versions 8.3.1, 8.2.7, 8.1.8, and 8.0.7 to address a high-severity security vulnerability, CVE-2021-43798, affecting versions from v8.0.0-beta1 to v8.3.0, which allowed directory traversal and unauthorized access to local files. This vulnerability prompted a swift response, with fixes implemented and released within a short timeframe. Although Grafana Cloud was never at risk due to a defense-in-depth approach, users of affected versions are urged to upgrade or use a reverse proxy to mitigate risks. Grafana coordinated with cloud service providers like Amazon and Azure to ensure their managed services were secure. The security issue was initially reported on December 3, 2021, and after verification and a leaked public disclosure, a rapid release was executed by December 7, 2021. Users are encouraged to report vulnerabilities to Grafana Labs and can find security announcements and updates on their blog.