CVEs-PoC/2023/CVE-2023-3128.md at b0e96c877abb080d7cf221c036336480ff266ccf

CalvinBackup/CVEs-PoC

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2026-05-09 02:45:46 +02:00

Files

T

0xMarcio 48a00929ac Removed duplicates

2024-06-18 02:51:15 +02:00

Description

Grafana is validating Azure AD accounts based on the email claim. On Azure AD, the profile email field is not unique and can be easily modified. This leads to account takeover and authentication bypass when Azure AD OAuth is configured with a multi-tenant app.

POC

Reference

https://github.com/grafana/bugbounty/security/advisories/GHSA-gxh2-6vvc-rrgp

Github

https://github.com/Threekiii/CVE
https://github.com/netlas-io/netlas-dorks

918 B Raw Blame History

CVE-2023-3128

Description

POC

Reference

Github

918 B

Raw Blame History