Vulnerabilities > CVE-2021-27358

047910
CVSS 5.0 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
PARTIAL
network
low complexity
grafana
netapp
NVD
Published: 2021-03-18
Updated: 2022-05-23

Summary

The snapshot feature in Grafana 6.7.3 through 7.4.1 can allow an unauthenticated remote attackers to trigger a Denial of Service via a remote API call if a commonly used configuration is set.

Vulnerable Configurations

Part Description Count
Application
Grafana
50
Application
Netapp
1

References