CVE-2026-27878 – Tempo TraceQL query with exemplar hint could result in unbounded memory usage

CVE ID :CVE-2026-27878

Published : June 19, 2026, 7:02 p.m. | 40 minutes ago

Description :A TraceQL query in Grafana Tempo with a large exemplars hint value can cause the Tempo instance to allocate an excessive amount of memory, resulting in an out-of-memory crash. This could allow an authenticated user to trigger a denial of service against the Tempo service.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…