Grafana Live Race Condition Vulnerability Leading to Denial-of-Service

Vulnerability

A race condition vulnerability has been identified in Grafana Live, allowing authenticated users with Viewer role to cause a server crash. This is achieved by sending concurrent requests that lead to a fatal map access error, resulting in complete service disruption and requiring a restart of the Grafana server.

Impact

Exploitation of this vulnerability causes a server crash, leading to complete service unavailability and requiring a manual restart of the Grafana server.

Added: May 13, 2026, 8:31 PM

Updated: May 13, 2026, 8:31 PM

Vulnerability Rating

Custom Algorithm

spread

6.2

impact

2.5

exploitability

4.8

remediation

0.0

relevance

8.2

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

6.2

impact

2.5

exploitability

4.8

remediation

0.0

relevance

8.2

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Grafana Live Race Condition Vulnerability Leading to Denial-of-Service

Vulnerability

Impact

Affected Products

Grafana

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating