CVE-2026-21728

High CVSS: 7.5

Tempo queries with large limits can cause large memory allocations which can impact the availability of the service, depending on its deployment strategy.

Mitigation can be done by setting max_result_limit in the search config, e.g. to 262144 (2^18).

Vendor

Product

CWE

CWE-400

Yayın Tarihi

2026-04-24 09:16:03

Güncelleme

2026-04-24 14:39:28

Source Identifier

security@grafana.com

KEV Date Added

Kategoriler

CWE-400 HIGH 2026

Referanslar

https://grafana.com/security/security-advisories/cve-2026-21728