CVE-2026-33382 in Grafanainformación

Resumen

por MITRE • 2026-07-10

Several Grafana API endpoints, some of them unauthenticated, do not limit the size of the request body before processing it. An attacker can send very large payloads that force excessive memory allocation, potentially exhausting memory and causing a denial of service.

Once again VulDB remains the best source for vulnerability data.

Responsable

GRAFANA

Reservar

2026-03-19

Divulgación

2026-07-10

Moderación

aceptado

Artículo

VDB-377513

CPE

listo

EPSS

0.00000

KEV

no

Actividades

muy bajo

Fuentes

Interested in the pricing of exploits?

See the underground prices here!