Slow Fog: Grafana has vulnerabilities related to account takeover and authentication bypass. Relevant parties should upgrade in a timely manner

2023-06-25 11:12:43

Collection

ChainCatcher news, according to Slow Fog, Grafana has issued a serious security alert regarding account takeover and authentication bypass vulnerabilities (CVE-2023-3128). Currently, a PoC is publicly available on the internet, and there have been cases of attacks.

Grafana is a cross-platform, open-source data visualization web application platform. After users configure the connected data sources, Grafana can display data charts and alerts in a web browser. Grafana verifies Azure Active Directory accounts based on email requests. In Azure AD, the email field in the profile is not unique across Azure AD tenants. When Azure AD OAuth is configured with multi-tenant Azure AD OAuth applications, this can lead to Grafana accounts being taken over and authentication bypassed. Grafana versions >= 6.7.0 are affected.

The cryptocurrency industry has a large number of platforms that use this solution to monitor server performance. Please be aware of the risks and upgrade Grafana to the latest version. (source link)

Related tags

Slow Fog Grafana Azure AD

ChainCatcher reminds readers to view blockchain rationally, enhance risk awareness, and be cautious of various virtual token issuances and speculations. All content on this site is solely market information or related party opinions, and does not constitute any form of investment advice. If you find sensitive information in the content, please click "Report", and we will handle it promptly.