BIT-grafana-2023-3128

See a problem?

Import Source

https://github.com/bitnami/vulndb/tree/main/data/grafana/BIT-grafana-2023-3128.json

JSON Data

https://api.osv.dev/v1/vulns/BIT-grafana-2023-3128

Aliases

CVE-2023-3128
GHSA-mpv3-g8m3-3fjc

Published

2024-03-06T10:53:06.974Z

Modified

2024-05-08T06:58:47.150756Z

Summary

[none]

Details

Grafana is validating Azure AD accounts based on the email claim. On Azure AD, the profile email field is not unique and can be easily modified. This leads to account takeover and authentication bypass when Azure AD OAuth is configured with a multi-tenant app.

References

https://github.com/grafana/bugbounty/security/advisories/GHSA-gxh2-6vvc-rrgp
https://grafana.com/security/security-advisories/cve-2023-3128/
https://security.netapp.com/advisory/ntap-20230714-0004/

Affected packages

Bitnami / grafana

Package

Name: grafana
Purl: pkg:bitnami/grafana

Severity

9.8 (Critical) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator

Affected ranges

Type: SEMVER
Events: Introduced

6.7.0

Fixed

8.5.27

Introduced

9.2.0

Fixed

9.2.20

Introduced

9.3.0

Fixed

9.3.16

Introduced

9.4.0

Fixed

9.4.13

Introduced

9.5.0

Fixed

9.5.4