CVE-2023-3128

Source
https://nvd.nist.gov/vuln/detail/CVE-2023-3128
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-3128.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2023-3128
Aliases
Related
Withdrawn
2024-05-08T06:52:40.938066Z
Published
2023-06-22T21:15:09Z
Modified
2024-05-08T06:58:47.150756Z
Severity
  • 9.8 (Critical) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
Summary
[none]
Details

Grafana is validating Azure AD accounts based on the email claim.

On Azure AD, the profile email field is not unique and can be easily modified.

This leads to account takeover and authentication bypass when Azure AD OAuth is configured with a multi-tenant app.

References

Affected packages

Git / github.com/grafana/grafana