=== CVE-2026-27876 Grafana SQL Expressions RCE - Variant/Bypass Analysis ===
Vulnerability: Arbitrary file write via SQL INTO clause
Target: Grafana SQL Expressions feature

Starting variant analysis...

=== Testing Vulnerable Version ===
=========================================
Testing vulnerable (Grafana 11.6.0)
=========================================
[1/5] Starting Grafana 11.6.0 with sqlExpressions enabled...
76d1abc96a1b3323a72dc918e7cce098799b5c7daead6954115a9a723210d9b8
docker: Error response from daemon: failed to set up container networking: driver failed programming external connectivity on endpoint grafana-variant-test (bb5dbef865a698df03712ca7e2822b8371b1cc41275db85bbb1b7243b4ff8904): Bind for 0.0.0.0:3001 failed: port is already allocated

Run 'docker run --help' for more information
ERROR: Failed to start Grafana 11.6.0
WARNING: Could not test vulnerable version

=== Testing Fixed Version ===
=========================================
Testing fixed (Grafana 11.6.14)
=========================================
grafana-variant-test
[1/5] Starting Grafana 11.6.14 with sqlExpressions enabled...
Unable to find image 'grafana/grafana:11.6.14' locally
11.6.14: Pulling from grafana/grafana
84497f182e83: Pulling fs layer
c8ac56d1525d: Pulling fs layer
eb4c164dc3d2: Pulling fs layer
4f4fb700ef54: Pulling fs layer
6705230b6abd: Pulling fs layer
7bbcded3bcdd: Pulling fs layer
6b148c92a765: Pulling fs layer
d9b6b0d7f238: Pulling fs layer
af443cc0a418: Pulling fs layer
4f4fb700ef54: Already exists
84497f182e83: Download complete
af443cc0a418: Download complete
c8ac56d1525d: Download complete
7bbcded3bcdd: Download complete
7bbcded3bcdd: Pull complete
eb4c164dc3d2: Download complete
6b148c92a765: Download complete
6b148c92a765: Pull complete
4f4fb700ef54: Pull complete
af443cc0a418: Pull complete
eb4c164dc3d2: Pull complete
6705230b6abd: Download complete
d9b6b0d7f238: Download complete
6705230b6abd: Pull complete
d9b6b0d7f238: Pull complete
c8ac56d1525d: Pull complete
84497f182e83: Pull complete
Digest: sha256:ebe075cd4c4520f9d3af2403a1ddc830651ca7d009cbdfdcf21032db574dc3a7
Status: Downloaded newer image for grafana/grafana:11.6.14
85424fdc41ea446c181c36a917c6c6487bafb6b2584df2aa7ce1f6ed5b1eb800
docker: Error response from daemon: failed to set up container networking: driver failed programming external connectivity on endpoint grafana-variant-test (3b7925dc0fc2e9478986981ca8e5c91a025096d98005b0c07c7912fd1eb608af): Bind for 0.0.0.0:3001 failed: port is already allocated

Run 'docker run --help' for more information
ERROR: Failed to start Grafana 11.6.14
WARNING: Could not test fixed version

=== Variant Analysis Complete ===
Results saved to:
  - /data/pruva/runs/89906abc-b6a9-4add-bf21-2cf03f0bc69e/artifacts/
  - /data/pruva/runs/89906abc-b6a9-4add-bf21-2cf03f0bc69e/logs/

=== Summary ===

WARNING: INTO clauses may not be properly blocked in fixed version.
This could indicate a potential bypass variant.