cve/CVE-2023-3128.md at a8969e132322a214e7b78da5711159d6f891f0ab

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-05-06 02:31:38 +00:00

0xMarcio 48a00929ac Removed duplicates

2024-06-18 02:51:15 +02:00

Description

Grafana is validating Azure AD accounts based on the email claim. On Azure AD, the profile email field is not unique and can be easily modified. This leads to account takeover and authentication bypass when Azure AD OAuth is configured with a multi-tenant app.

POC

Reference

https://github.com/grafana/bugbounty/security/advisories/GHSA-gxh2-6vvc-rrgp

Github

https://github.com/Threekiii/CVE
https://github.com/netlas-io/netlas-dorks

918 B Raw Blame History

CVE-2023-3128

Description

POC

Reference

Github

918 B

Raw Blame History