# CVE-2026-21728

> Vulnerability · severity: **HIGH** (CVSS 7.5).

## Description

Tempo queries with large limits can cause large memory allocations which can impact the availability of the service, depending on its deployment strategy.

Mitigation can be done by setting max_result_limit in the search config, e.g. to 262144 (2^18).

## Key facts

- **CVE ID:** CVE-2026-21728
- **Published:** 2026-04-24
- **CVSS severity:** HIGH
- **CVSS base score:** 7.5
- **CWE codes:** CWE-400

## Primary sources

- NIST NVD: https://nvd.nist.gov/vuln/detail/CVE-2026-21728

## Citation

> AI Analytics. CVE-2026-21728. Retrieved 2026-07-19 from https://api.ai-analytics.org/cve/CVE-2026-21728. Derived from NIST NVD. Licensed CC0.

---

*[Dataset catalog](https://api.ai-analytics.org/datasets/) · [AI Analytics](https://api.ai-analytics.org/) · CC0 1.0*