Denial of Service Vulnerability in Grafana Snapshot Feature

Denial of Service Vulnerability in Grafana Snapshot Feature

CVE-2021-27358 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

The snapshot feature in Grafana 6.7.3 through 7.4.1 can allow an unauthenticated remote attackers to trigger a Denial of Service via a remote API call if a commonly used configuration is set.

Learn more about our Api Penetration Testing.