Shulou(Shulou.com)11/24 Report--

CTOnews.com, June 28 (Xinhua) Grafana, a provider of graphics and image recognition solutions, has issued a security notice saying that there is a major vulnerability in its Grafana environment, CVE-2023-3128, which can be used by hackers to take over and hijack Microsoft Azure AD accounts.

It is reported on the ▲ source Grafana official website that this vulnerability is caused by the fact that the Grafana platform uses email mailboxes to verify Azure AD accounts. once hackers take advantage of this, they will be able to bypass authentication and take over Azure AD user accounts in a Grafana environment that uses Azure AD's OAuth authentication.

CTOnews.com noted that the CVSS risk score of this vulnerability is 9.4, which affects Grafana above version 6.7.0. Currently, Grafana has released the following updated versions to address related vulnerabilities:

8.5.27

9.2.20

9.3.16

9.4.13

9.5.5

10.0.1 .

At the same time, the development team also completed the relevant vulnerability repair work for Grafana Cloud. For users who are temporarily unable to install the update, they also propose mitigation measures:

Adding the allowed_groups configuration to the Azure AD configuration ensures that when users log in, they are also members of the group in Azure AD, making it impossible for hackers to attack with any email address.

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.