What is the CVSS score of CVE-2026-27880?

CVE-2026-27880 has a CVSS 3.1 base score of 7.5 (High). CVSS vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H. EPSS exploitation probability: 0.0%.

Which versions of Grafana are affected by CVE-2026-27880?

Grafana deployments are vulnerable to unauthenticated remote denial-of-service attacks through the OpenFeature toggle evaluation endpoint, which can be exhausted by unbounded input values, causing…. A patch is available.

How to fix or mitigate CVE-2026-27880?

Within 24 hours: Identify all Grafana instances exposing the OpenFeature endpoint and document their network accessibility; assess whether this feature is actively used in your environment. Within 7 days: Implement network segmentation to restrict access to the OpenFeature endpoint to trusted internal systems only, and deploy WAF rules to rate-limit and validate requests to this endpoint. Within 30 days: Monitor Grafana security advisories for patch availability and establish a change control process to apply patches immediately upon release; evaluate disabling the OpenFeature feature toggle if not operationally required.

Grafana CVE-2026-27880

EUVD-2026-16598 HIGH

Out-of-bounds Write (CWE-787)

2026-03-27 GRAFANA

Buffer Overflow Memory Corruption Grafana

7.5

CVSS 3.1 · NVD

Severity by source

NVD PRIMARY

7.5 HIGH

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

SUSE

HIGH

qualitative

Red Hat

7.5 HIGH

qualitative

Primary rating from NVD.

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

None

Integrity

None

Availability

High

Lifecycle Timeline

Patch released

Apr 10, 2026 - 08:30 nvd

Patch available

EUVD ID Assigned

Mar 27, 2026 - 14:30 euvd

EUVD-2026-16598

Analysis Generated

Mar 27, 2026 - 14:30 vuln.today

CVE Published

Mar 27, 2026 - 14:12 nvd

HIGH 7.5

DescriptionCVE.org

The OpenFeature feature toggle evaluation endpoint reads unbounded values into memory, which can cause out-of-memory crashes.

AnalysisAI

Grafana's OpenFeature feature toggle evaluation endpoint can be forced into an out-of-memory condition by submitting unbounded values, enabling remote denial-of-service attacks against the monitoring platform. The vulnerability is network-accessible, requires no authentication (CVSS AV:N/AC:L/PR:N), and has been assigned a CVSS score of 7.5 with high availability impact. …

Unlock full vulnerability intelligence

Risk assessment & exploitation conditions
Attack chain visualization
Remediation with exact patch versions
Threat intelligence from 22 sources
Personal watchlist & email alerts

Continue with Google Continue with GitHub

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access

Send unbounded payload to feature toggle endpoint

Exploit

Parser allocates unlimited memory

Execution

Out-of-memory condition triggered

Impact

Service crashes

Access

Send unbounded payload to feature toggle endpoint

Exploit

Parser allocates unlimited memory

Execution

Out-of-memory condition triggered

Impact

Service crashes

Vulnerability AssessmentAI

Exploitation	Remote unauthenticated attacker can exploit OpenFeature feature toggle evaluation endpoint by sending unbounded values via network request. … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment	The CVSS 7.5 score reflects high real-world risk for publicly accessible Grafana instances. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario	An unauthenticated remote attacker sends HTTP requests to the Grafana OpenFeature evaluation endpoint with extremely large feature toggle values designed to exceed available memory. Because the endpoint processes these values without size validation, repeated requests rapidly consume server memory until the Grafana process crashes or the host exhausts RAM, causing complete denial of service for all monitoring dashboards and alerting functionality dependent on the instance.
Remediation	Consult the official Grafana security advisory at https://grafana.com/security/security-advisories/cve-2026-27880 for patch details and specific upgrade instructions, as the exact fixed version is not specified in available intelligence sources. … Detailed patch versions, workarounds, and compensating controls in full report.

Recommended ActionAI

Within 24 hours: Identify all Grafana instances exposing the OpenFeature endpoint and document their network accessibility; assess whether this feature is actively used in your environment. …

Threat intelligence, references, and detailed analysis are available after sign-in.

More from same product – last 7 days

CVE-2026-11769 MEDIUM This Month

6.4 Jun 13

Privilege escalation in Grafana Operator (all versions ≤ 5.23) allows any user with Kubernetes RBAC permissions to creat

Vendor StatusVendor

SUSE

Severity: High

Product	Status
SUSE Linux Enterprise Module for Package Hub 15 SP7	Fixed
SUSE Manager Client Tools 15	Fixed
SUSE Manager Client Tools for SLE 15	Fixed
SUSE Multi-Linux Manager Client Tools for SLE 15	Fixed
openSUSE Leap 15.6	Fixed

CVE-2026-27880 vulnerability details – vuln.today

Back

Grafana CVE-2026-27880

Severity by source

CVSS VectorNVD

Lifecycle Timeline

DescriptionCVE.org

AnalysisAI

Unlock full vulnerability intelligence

Attack ChainAIDerived

Vulnerability AssessmentAI

Recommended ActionAI

More from same product – last 7 days

Vendor StatusVendor

SUSE

Share

External POC / Exploit Code