Zurück zur CVE-Übersicht
CVE-2026-33382
HIGH(7.5)CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Risk Signal Score29/100 — MITTEL
- CVSS 7.5 — Hoch
- Weniger als 24 Stunden alt
Beschreibung
Several Grafana API endpoints, some of them unauthenticated, do not limit the size of the request body before processing it. An attacker can send very large payloads that force excessive memory allocation, potentially exhausting memory and causing a denial of service.