Vulnerability-Lookup

WID-SEC-W-2026-0899

Vulnerability from csaf_certbund - Published: 2026-03-29 22:00 - Updated: 2026-06-04 22:00

Summary

Grafana: Mehrere Schwachstellen

Severity

Hoch

Notes

Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.

Produktbeschreibung: Grafana ist eine Analyse- und Visualisierungssoftware.

Angriff: Ein entfernter, authentisierter oder anonymer Angreifer kann mehrere Schwachstellen in Grafana ausnutzen, um einen Denial of Service Angriff durchzuführen, Code auszuführen oder Informationen offenzulegen.

Betroffene Betriebssysteme: - Linux - Sonstiges - UNIX - Windows

CVE-2026-27875

Affected products

Known affected 7 products

Product	Identifier	Version
Grafana Grafana <12.3.0 Grafana / Grafana		<12.3.0
Grafana Grafana <12.0.0 Grafana / Grafana		<12.0.0
Grafana Grafana <12.2.0 Grafana / Grafana		<12.2.0
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Grafana Grafana <12.4.0 Grafana / Grafana		<12.4.0

CVE-2026-27876

Affected products

Known affected 7 products

Product	Identifier	Version
Grafana Grafana <12.3.0 Grafana / Grafana		<12.3.0
Grafana Grafana <12.0.0 Grafana / Grafana		<12.0.0
Grafana Grafana <12.2.0 Grafana / Grafana		<12.2.0
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Grafana Grafana <12.4.0 Grafana / Grafana		<12.4.0

CVE-2026-27877

Affected products

Known affected 7 products

Product	Identifier	Version
Grafana Grafana <12.3.0 Grafana / Grafana		<12.3.0
Grafana Grafana <12.0.0 Grafana / Grafana		<12.0.0
Grafana Grafana <12.2.0 Grafana / Grafana		<12.2.0
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Grafana Grafana <12.4.0 Grafana / Grafana		<12.4.0

CVE-2026-27879

Affected products

Known affected 7 products

Product	Identifier	Version
Grafana Grafana <12.3.0 Grafana / Grafana		<12.3.0
Grafana Grafana <12.0.0 Grafana / Grafana		<12.0.0
Grafana Grafana <12.2.0 Grafana / Grafana		<12.2.0
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Grafana Grafana <12.4.0 Grafana / Grafana		<12.4.0

CVE-2026-27880

Affected products

Known affected 7 products

Product	Identifier	Version
Grafana Grafana <12.3.0 Grafana / Grafana		<12.3.0
Grafana Grafana <12.0.0 Grafana / Grafana		<12.0.0
Grafana Grafana <12.2.0 Grafana / Grafana		<12.2.0
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Grafana Grafana <12.4.0 Grafana / Grafana		<12.4.0

References

16 references

URL	Category
https://wid.cert-bund.de/.well-known/csaf/white/2…	self
https://wid.cert-bund.de/portal/wid/securityadvis…	self
https://grafana.com/security/security-advisories/…	external
https://grafana.com/security/security-advisories/…	external
https://grafana.com/security/security-advisories/…	external
https://grafana.com/security/security-advisories/…	external
https://grafana.com/security/security-advisories/…	external
https://access.redhat.com/errata/RHSA-2026:10223	external
https://access.redhat.com/errata/RHSA-2026:10226	external
https://errata.build.resf.org/RLSA-2026:10226	external
https://errata.build.resf.org/RLSA-2026:10223	external
https://access.redhat.com/errata/RHSA-2026:11417	external
https://access.redhat.com/errata/RHSA-2026:11416	external
https://access.redhat.com/errata/RHSA-2026:19134	external
https://access.redhat.com/errata/RHSA-2026:19352	external
https://lists.suse.com/pipermail/sle-security-upd…	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "hoch"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Grafana ist eine Analyse- und Visualisierungssoftware.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein entfernter, authentisierter oder anonymer Angreifer kann mehrere Schwachstellen in Grafana ausnutzen, um einen Denial of Service Angriff durchzuf\u00fchren, Code auszuf\u00fchren oder Informationen offenzulegen.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Linux\n- Sonstiges\n- UNIX\n- Windows",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2026-0899 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2026/wid-sec-w-2026-0899.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2026-0899 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2026-0899"
      },
      {
        "category": "external",
        "summary": "Grafana Security Advisory vom 2026-03-29",
        "url": "https://grafana.com/security/security-advisories/cve-2026-28375/"
      },
      {
        "category": "external",
        "summary": "Grafana Security Advisory vom 2026-03-29",
        "url": "https://grafana.com/security/security-advisories/cve-2026-27876/"
      },
      {
        "category": "external",
        "summary": "Grafana Security Advisory vom 2026-03-29",
        "url": "https://grafana.com/security/security-advisories/cve-2026-27877/"
      },
      {
        "category": "external",
        "summary": "Grafana Security Advisory vom 2026-03-29",
        "url": "https://grafana.com/security/security-advisories/cve-2026-27879/"
      },
      {
        "category": "external",
        "summary": "Grafana Security Advisory vom 2026-03-29",
        "url": "https://grafana.com/security/security-advisories/cve-2026-27880/"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2026:10223 vom 2026-04-24",
        "url": "https://access.redhat.com/errata/RHSA-2026:10223"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2026:10226 vom 2026-04-24",
        "url": "https://access.redhat.com/errata/RHSA-2026:10226"
      },
      {
        "category": "external",
        "summary": "Rocky Linux Security Advisory RLSA-2026:10226 vom 2026-04-28",
        "url": "https://errata.build.resf.org/RLSA-2026:10226"
      },
      {
        "category": "external",
        "summary": "Rocky Linux Security Advisory RLSA-2026:10223 vom 2026-04-28",
        "url": "https://errata.build.resf.org/RLSA-2026:10223"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2026:11417 vom 2026-04-29",
        "url": "https://access.redhat.com/errata/RHSA-2026:11417"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2026:11416 vom 2026-04-29",
        "url": "https://access.redhat.com/errata/RHSA-2026:11416"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2026:19134 vom 2026-05-19",
        "url": "https://access.redhat.com/errata/RHSA-2026:19134"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2026:19352 vom 2026-05-20",
        "url": "https://access.redhat.com/errata/RHSA-2026:19352"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:2258-1 vom 2026-06-03",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-June/026563.html"
      }
    ],
    "source_lang": "en-US",
    "title": "Grafana: Mehrere Schwachstellen",
    "tracking": {
      "current_release_date": "2026-06-04T22:00:00.000+00:00",
      "generator": {
        "date": "2026-06-05T08:34:12.932+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.6.0"
        }
      },
      "id": "WID-SEC-W-2026-0899",
      "initial_release_date": "2026-03-29T22:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2026-03-29T22:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2026-04-23T22:00:00.000+00:00",
          "number": "2",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2026-04-27T22:00:00.000+00:00",
          "number": "3",
          "summary": "Neue Updates von Rocky Enterprise Software Foundation aufgenommen"
        },
        {
          "date": "2026-04-28T22:00:00.000+00:00",
          "number": "4",
          "summary": "Neue Updates von Rocky Enterprise Software Foundation und Red Hat aufgenommen"
        },
        {
          "date": "2026-05-19T22:00:00.000+00:00",
          "number": "5",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2026-06-04T22:00:00.000+00:00",
          "number": "6",
          "summary": "Neue Updates von SUSE aufgenommen"
        }
      ],
      "status": "final",
      "version": "6"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c12.3.0",
                "product": {
                  "name": "Grafana Grafana \u003c12.3.0",
                  "product_id": "F884E593-1787-4794-8D30-3A44C8027653"
                }
              },
              {
                "category": "product_version",
                "name": "12.3.0",
                "product": {
                  "name": "Grafana Grafana 12.3.0",
                  "product_id": "F884E593-1787-4794-8D30-3A44C8027653-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:grafana:grafana:12.3.0"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c12.2.0",
                "product": {
                  "name": "Grafana Grafana \u003c12.2.0",
                  "product_id": "F95FA3F6-76A4-4D9C-A702-32D6B69AC3D6"
                }
              },
              {
                "category": "product_version",
                "name": "12.2.0",
                "product": {
                  "name": "Grafana Grafana 12.2.0",
                  "product_id": "F95FA3F6-76A4-4D9C-A702-32D6B69AC3D6-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:grafana:grafana:12.2.0"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c12.0.0",
                "product": {
                  "name": "Grafana Grafana \u003c12.0.0",
                  "product_id": "T052253"
                }
              },
              {
                "category": "product_version",
                "name": "12.0.0",
                "product": {
                  "name": "Grafana Grafana 12.0.0",
                  "product_id": "T052253-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:grafana:grafana:12.0.0"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c12.4.0",
                "product": {
                  "name": "Grafana Grafana \u003c12.4.0",
                  "product_id": "T052254"
                }
              },
              {
                "category": "product_version",
                "name": "12.4.0",
                "product": {
                  "name": "Grafana Grafana 12.4.0",
                  "product_id": "T052254-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:grafana:grafana:12.4.0"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Grafana"
          }
        ],
        "category": "vendor",
        "name": "Grafana"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "RESF Rocky Linux",
            "product": {
              "name": "RESF Rocky Linux",
              "product_id": "T032255",
              "product_identification_helper": {
                "cpe": "cpe:/o:resf:rocky_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "RESF"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Red Hat Enterprise Linux",
            "product": {
              "name": "Red Hat Enterprise Linux",
              "product_id": "67646",
              "product_identification_helper": {
                "cpe": "cpe:/o:redhat:enterprise_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "SUSE Linux",
            "product": {
              "name": "SUSE Linux",
              "product_id": "T002207",
              "product_identification_helper": {
                "cpe": "cpe:/o:suse:suse_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2026-27875",
      "product_status": {
        "known_affected": [
          "F884E593-1787-4794-8D30-3A44C8027653",
          "T052253",
          "F95FA3F6-76A4-4D9C-A702-32D6B69AC3D6",
          "T002207",
          "67646",
          "T032255",
          "T052254"
        ]
      },
      "release_date": "2026-03-29T22:00:00.000+00:00",
      "title": "CVE-2026-27875"
    },
    {
      "cve": "CVE-2026-27876",
      "product_status": {
        "known_affected": [
          "F884E593-1787-4794-8D30-3A44C8027653",
          "T052253",
          "F95FA3F6-76A4-4D9C-A702-32D6B69AC3D6",
          "T002207",
          "67646",
          "T032255",
          "T052254"
        ]
      },
      "release_date": "2026-03-29T22:00:00.000+00:00",
      "title": "CVE-2026-27876"
    },
    {
      "cve": "CVE-2026-27877",
      "product_status": {
        "known_affected": [
          "F884E593-1787-4794-8D30-3A44C8027653",
          "T052253",
          "F95FA3F6-76A4-4D9C-A702-32D6B69AC3D6",
          "T002207",
          "67646",
          "T032255",
          "T052254"
        ]
      },
      "release_date": "2026-03-29T22:00:00.000+00:00",
      "title": "CVE-2026-27877"
    },
    {
      "cve": "CVE-2026-27879",
      "product_status": {
        "known_affected": [
          "F884E593-1787-4794-8D30-3A44C8027653",
          "T052253",
          "F95FA3F6-76A4-4D9C-A702-32D6B69AC3D6",
          "T002207",
          "67646",
          "T032255",
          "T052254"
        ]
      },
      "release_date": "2026-03-29T22:00:00.000+00:00",
      "title": "CVE-2026-27879"
    },
    {
      "cve": "CVE-2026-27880",
      "product_status": {
        "known_affected": [
          "F884E593-1787-4794-8D30-3A44C8027653",
          "T052253",
          "F95FA3F6-76A4-4D9C-A702-32D6B69AC3D6",
          "T002207",
          "67646",
          "T032255",
          "T052254"
        ]
      },
      "release_date": "2026-03-29T22:00:00.000+00:00",
      "title": "CVE-2026-27880"
    }
  ]
}

CVE-2026-27876 (GCVE-0-2026-27876)

Vulnerability from cvelistv5 – Published: 2026-03-27 14:24 – Updated: 2026-06-17 11:59

Title

RCE on Grafana via sqlExpressions

Summary

A chained attack via SQL Expressions and a Grafana Enterprise plugin can lead to a remote arbitrary code execution impact (RCE). This is enabled by a feature in Grafana (OSS), so all users are always recommended to update to avoid future attack vectors going this path. Only instances with the sqlExpressions feature toggle enabled are vulnerable. Only instances in the following version ranges are affected: - 11.6.0 (inclusive) to 11.6.14 (exclusive): 11.6.14 has the fix. 11.5 and below are not affected. - 12.0.0 (inclusive) to 12.1.10 (exclusive): 12.1.10 has the fix. 12.0 did not receive an update, as it is end-of-life. - 12.2.0 (inclusive) to 12.2.8 (exclusive): 12.2.8 has the fix. - 12.3.0 (inclusive) to 12.3.6 (exclusive): 12.3.6 has the fix. - 12.4.0 (inclusive) to 12.4.2 (exclusive): 12.4.2 has the fix. 13.0.0 and above also have the fix: no v13 release is affected.

Severity

9.1 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H

SSVC

Exploitation: none Automatable: no Technical Impact: total

CISA Coordinator (v2.0.3)

CWE

CWE-94 - Improper Control of Generation of Code ('Code Injection')

Assigner

GRAFANA

References

1 reference

URL	Tags
https://grafana.com/security/security-advisories/…	vendor-advisory

Impacted products

1 product

Vendor	Product	Version
Grafana	Grafana	Affected: 11.6.0 , < 11.6.14 (semver) Affected: 12.0.0 , < 12.1.10 (semver) Affected: 12.2.0 , < 12.2.8 (semver) Affected: 12.3.0 , < 12.3.6 (semver) Affected: 12.4.0 , < 12.4.2 (semver)

Date Public

2026-03-27 14:21

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2026-27876",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2026-03-27T00:00:00+00:00",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "cweId": "CWE-94",
                "description": "CWE-94 Improper Control of Generation of Code (\u0027Code Injection\u0027)",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2026-03-28T03:55:48.690Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Grafana",
          "vendor": "Grafana",
          "versions": [
            {
              "lessThan": "11.6.14",
              "status": "affected",
              "version": "11.6.0",
              "versionType": "semver"
            },
            {
              "lessThan": "12.1.10",
              "status": "affected",
              "version": "12.0.0",
              "versionType": "semver"
            },
            {
              "lessThan": "12.2.8",
              "status": "affected",
              "version": "12.2.0",
              "versionType": "semver"
            },
            {
              "lessThan": "12.3.6",
              "status": "affected",
              "version": "12.3.0",
              "versionType": "semver"
            },
            {
              "lessThan": "12.4.2",
              "status": "affected",
              "version": "12.4.0",
              "versionType": "semver"
            }
          ]
        }
      ],
      "datePublic": "2026-03-27T14:21:53.858Z",
      "descriptions": [
        {
          "lang": "en",
          "value": "A chained attack via SQL Expressions and a Grafana Enterprise plugin can lead to a remote arbitrary code execution impact (RCE). This is enabled by a feature in Grafana (OSS), so all users are always recommended to update to avoid future attack vectors going this path.\n\nOnly instances with the sqlExpressions feature toggle enabled are vulnerable.\n\nOnly instances in the following version ranges are affected:\n\n- 11.6.0 (inclusive) to 11.6.14 (exclusive): 11.6.14 has the fix. 11.5 and below are not affected.\n- 12.0.0 (inclusive) to 12.1.10 (exclusive): 12.1.10 has the fix. 12.0 did not receive an update, as it is end-of-life.\n- 12.2.0 (inclusive) to 12.2.8 (exclusive): 12.2.8 has the fix.\n- 12.3.0 (inclusive) to 12.3.6 (exclusive): 12.3.6 has the fix.\n- 12.4.0 (inclusive) to 12.4.2 (exclusive): 12.4.2 has the fix. 13.0.0 and above also have the fix: no v13 release is affected."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "baseScore": 9.1,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H",
            "version": "3.1"
          }
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-06-17T11:59:15.820Z",
        "orgId": "57da9224-a3e2-4646-9d0e-c4dc2e05e7da",
        "shortName": "GRAFANA"
      },
      "references": [
        {
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://grafana.com/security/security-advisories/cve-2026-27876"
        }
      ],
      "source": {
        "discovery": "BUG_BOUNTY"
      },
      "title": "RCE on Grafana via sqlExpressions",
      "x_generator": {
        "engine": "cvelib 1.8.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "57da9224-a3e2-4646-9d0e-c4dc2e05e7da",
    "assignerShortName": "GRAFANA",
    "cveId": "CVE-2026-27876",
    "datePublished": "2026-03-27T14:24:36.771Z",
    "dateReserved": "2026-02-24T14:30:17.726Z",
    "dateUpdated": "2026-06-17T11:59:15.820Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2026-27877 (GCVE-0-2026-27877)

Vulnerability from cvelistv5 – Published: 2026-03-27 14:02 – Updated: 2026-06-17 11:59

Title

Public dashboards discloses all direct mode datasources

Summary

When using public dashboards and direct data-sources, all direct data-sources' passwords are exposed despite not being used in dashboards. No passwords of proxied data-sources are exposed. We encourage all direct data-sources to be converted to proxied data-sources as far as possible to improve your deployments' security.

Severity

6.5 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

SSVC

Exploitation: none Automatable: no Technical Impact: partial

CISA Coordinator (v2.0.3)

CWE

CWE-312 - Cleartext Storage of Sensitive Information

Assigner

GRAFANA

References

1 reference

URL	Tags
https://grafana.com/security/security-advisories/…	vendor-advisory

Impacted products

1 product

Vendor	Product	Version
Grafana	Grafana	Affected: 9.3.0 , < 11.6.14 (semver) Affected: 12.0.0 , < 12.1.10 (semver) Affected: 12.2.0 , < 12.2.8 (semver) Affected: 12.3.0 , < 12.3.6 (semver) Affected: 12.4.0 , < 12.4.2 (semver)

Date Public

2026-03-27 13:59

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2026-27877",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2026-03-27T14:56:26.128138Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "cweId": "CWE-312",
                "description": "CWE-312 Cleartext Storage of Sensitive Information",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2026-05-10T13:55:59.537Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "references": [
          {
            "tags": [
              "broken-link"
            ],
            "url": "https://grafana.com/security/security-advisories/cve-2026-27877"
          }
        ],
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Grafana",
          "vendor": "Grafana",
          "versions": [
            {
              "lessThan": "11.6.14",
              "status": "affected",
              "version": "9.3.0",
              "versionType": "semver"
            },
            {
              "lessThan": "12.1.10",
              "status": "affected",
              "version": "12.0.0",
              "versionType": "semver"
            },
            {
              "lessThan": "12.2.8",
              "status": "affected",
              "version": "12.2.0",
              "versionType": "semver"
            },
            {
              "lessThan": "12.3.6",
              "status": "affected",
              "version": "12.3.0",
              "versionType": "semver"
            },
            {
              "lessThan": "12.4.2",
              "status": "affected",
              "version": "12.4.0",
              "versionType": "semver"
            }
          ]
        }
      ],
      "datePublic": "2026-03-27T13:59:46.831Z",
      "descriptions": [
        {
          "lang": "en",
          "value": "When using public dashboards and direct data-sources, all direct data-sources\u0027 passwords are exposed despite not being used in dashboards.\n\nNo passwords of proxied data-sources are exposed. We encourage all direct data-sources to be converted to proxied data-sources as far as possible to improve your deployments\u0027 security."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          }
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-06-17T11:59:10.714Z",
        "orgId": "57da9224-a3e2-4646-9d0e-c4dc2e05e7da",
        "shortName": "GRAFANA"
      },
      "references": [
        {
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://grafana.com/security/security-advisories/cve-2026-27877"
        }
      ],
      "source": {
        "discovery": "BUG_BOUNTY"
      },
      "title": "Public dashboards discloses all direct mode datasources",
      "x_generator": {
        "engine": "cvelib 1.8.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "57da9224-a3e2-4646-9d0e-c4dc2e05e7da",
    "assignerShortName": "GRAFANA",
    "cveId": "CVE-2026-27877",
    "datePublished": "2026-03-27T14:02:11.889Z",
    "dateReserved": "2026-02-24T14:30:17.726Z",
    "dateUpdated": "2026-06-17T11:59:10.714Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2026-27879 (GCVE-0-2026-27879)

Vulnerability from cvelistv5 – Published: 2026-03-27 14:28 – Updated: 2026-06-17 11:59

Title

Query resampling can cause unbounded memory allocations

Summary

A resample query can be used to trigger out-of-memory crashes in Grafana.

Severity

6.5 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

SSVC

Exploitation: none Automatable: no Technical Impact: partial

CISA Coordinator (v2.0.3)

CWE

CWE-400 - Uncontrolled Resource Consumption

Assigner

GRAFANA

References

1 reference

URL	Tags
https://grafana.com/security/security-advisories/…	vendor-advisory

Impacted products

1 product

Vendor	Product	Version
Grafana	Grafana	Affected: 8.0.0 , < 11.6.14 (semver) Affected: 12.0.0 , < 12.1.10 (semver) Affected: 12.2.0 , < 12.2.8 (semver) Affected: 12.3.0 , < 12.3.6 (semver) Affected: 12.4.0 , < 12.4.2 (semver)

Date Public

2026-03-27 14:26

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2026-27879",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2026-03-31T15:02:56.347770Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "cweId": "CWE-400",
                "description": "CWE-400 Uncontrolled Resource Consumption",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2026-03-31T15:02:59.478Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Grafana",
          "vendor": "Grafana",
          "versions": [
            {
              "lessThan": "11.6.14",
              "status": "affected",
              "version": "8.0.0",
              "versionType": "semver"
            },
            {
              "lessThan": "12.1.10",
              "status": "affected",
              "version": "12.0.0",
              "versionType": "semver"
            },
            {
              "lessThan": "12.2.8",
              "status": "affected",
              "version": "12.2.0",
              "versionType": "semver"
            },
            {
              "lessThan": "12.3.6",
              "status": "affected",
              "version": "12.3.0",
              "versionType": "semver"
            },
            {
              "lessThan": "12.4.2",
              "status": "affected",
              "version": "12.4.0",
              "versionType": "semver"
            }
          ]
        }
      ],
      "datePublic": "2026-03-27T14:26:32.584Z",
      "descriptions": [
        {
          "lang": "en",
          "value": "A resample query can be used to trigger out-of-memory crashes in Grafana."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          }
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-06-17T11:59:13.827Z",
        "orgId": "57da9224-a3e2-4646-9d0e-c4dc2e05e7da",
        "shortName": "GRAFANA"
      },
      "references": [
        {
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://grafana.com/security/security-advisories/cve-2026-27879"
        }
      ],
      "source": {
        "discovery": "INTERNAL_FINDING"
      },
      "title": "Query resampling can cause unbounded memory allocations",
      "x_generator": {
        "engine": "cvelib 1.8.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "57da9224-a3e2-4646-9d0e-c4dc2e05e7da",
    "assignerShortName": "GRAFANA",
    "cveId": "CVE-2026-27879",
    "datePublished": "2026-03-27T14:28:56.133Z",
    "dateReserved": "2026-02-24T14:30:17.727Z",
    "dateUpdated": "2026-06-17T11:59:13.827Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2026-27880 (GCVE-0-2026-27880)

Vulnerability from cvelistv5 – Published: 2026-03-27 14:12 – Updated: 2026-06-17 11:59

Title

OpenFeature evaluation API reads input data with no bounds

Summary

The OpenFeature feature toggle evaluation endpoint reads unbounded values into memory, which can cause out-of-memory crashes.

Severity

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

SSVC

Exploitation: none Automatable: yes Technical Impact: partial

CISA Coordinator (v2.0.3)

CWE

CWE-125 - Out-of-bounds Read

Assigner

GRAFANA

References

1 reference

URL	Tags
https://grafana.com/security/security-advisories/…	vendor-advisory

Impacted products

1 product

Vendor	Product	Version
Grafana	Grafana	Affected: v12.1.0 , < v12.1.10 (semver) Affected: v12.2.0 , < v12.2.8 (semver) Affected: v12.3.0 , < v12.3.6 (semver) Affected: v12.4.0 , < v12.4.2 (semver)

Date Public

2026-03-27 14:08

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2026-27880",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "yes"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2026-03-27T14:43:21.670196Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "cweId": "CWE-125",
                "description": "CWE-125 Out-of-bounds Read",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2026-05-10T13:56:28.749Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "references": [
          {
            "tags": [
              "broken-link"
            ],
            "url": "https://grafana.com/security/security-advisories/cve-2026-27880"
          }
        ],
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Grafana",
          "vendor": "Grafana",
          "versions": [
            {
              "lessThan": "v12.1.10",
              "status": "affected",
              "version": "v12.1.0",
              "versionType": "semver"
            },
            {
              "lessThan": "v12.2.8",
              "status": "affected",
              "version": "v12.2.0",
              "versionType": "semver"
            },
            {
              "lessThan": "v12.3.6",
              "status": "affected",
              "version": "v12.3.0",
              "versionType": "semver"
            },
            {
              "lessThan": "v12.4.2",
              "status": "affected",
              "version": "v12.4.0",
              "versionType": "semver"
            }
          ]
        }
      ],
      "datePublic": "2026-03-27T14:08:45.874Z",
      "descriptions": [
        {
          "lang": "en",
          "value": "The OpenFeature feature toggle evaluation endpoint reads unbounded values into memory, which can cause out-of-memory crashes."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          }
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-06-17T11:59:16.102Z",
        "orgId": "57da9224-a3e2-4646-9d0e-c4dc2e05e7da",
        "shortName": "GRAFANA"
      },
      "references": [
        {
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://grafana.com/security/security-advisories/cve-2026-27880"
        }
      ],
      "source": {
        "discovery": "INTERNAL_FINDING"
      },
      "title": "OpenFeature evaluation API reads input data with no bounds",
      "x_generator": {
        "engine": "cvelib 1.8.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "57da9224-a3e2-4646-9d0e-c4dc2e05e7da",
    "assignerShortName": "GRAFANA",
    "cveId": "CVE-2026-27880",
    "datePublished": "2026-03-27T14:12:20.075Z",
    "dateReserved": "2026-02-24T14:30:17.727Z",
    "dateUpdated": "2026-06-17T11:59:16.102Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

Sightings

Author	Source	Type	Date	Other

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

WID-SEC-W-2026-0899

CVE-2026-27876 (GCVE-0-2026-27876)

CVE-2026-27877 (GCVE-0-2026-27877)

CVE-2026-27879 (GCVE-0-2026-27879)

CVE-2026-27880 (GCVE-0-2026-27880)

Tags

Sightings

Nomenclature