CVE-2023-3128

See a problem?
Source
https://nvd.nist.gov/vuln/detail/CVE-2023-3128
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-3128.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2023-3128
Aliases
Related
Withdrawn
2024-05-15T05:32:53.414044Z
Published
2023-06-22T21:15:09Z
Modified
2024-05-19T02:24:32.538954Z
Severity
  • 9.8 (Critical) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
Summary
[none]
Details

Grafana is validating Azure AD accounts based on the email claim.

On Azure AD, the profile email field is not unique and can be easily modified.

This leads to account takeover and authentication bypass when Azure AD OAuth is configured with a multi-tenant app.

References

Affected packages

Git / github.com/grafana/grafana

Affected ranges

Type
GIT
Repo
https://github.com/grafana/grafana
Events
Introduced
efe95b4c213a64acd9566f658b21fb6c11597b32
Introduced
dbb869b17343d20a73521ada8ff61d639abe23b7
Fixed
e63c0e529c6fbb06a2efcb0d38f4fc22c0ebd4dd
Introduced
e9cb2a313ecc5a8e3cfeca7d2b7df2878802096e
Introduced
c7eea48209eb93819a0ab7593921fffba5b2d339
Introduced
c4656a885d92ccc5eaaf71747cd5c236c133a21f