Unrated severityNVD Advisory· Published Apr 26, 2023· Updated Feb 13, 2025

CVE-2023-1387

Description

Grafana is an open-source platform for monitoring and observability.

Starting with the 9.1 branch, Grafana introduced the ability to search for a JWT in the URL query parameter auth_token and use it as the authentication token.

By enabling the "url_login" configuration option (disabled by default), a JWT might be sent to data sources. If an attacker has access to the data source, the leaked token could be used to authenticate to Grafana.

Affected products

Grafana/Grafanav5
Range: 9.1.0
Grafana/Grafana Enterprisev5
Range: 9.1.0

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

github.com/grafana/bugbounty/security/advisories/GHSA-5585-m9r5-p86jmitre
grafana.com/security/security-advisories/cve-2023-1387/mitre
security.netapp.com/advisory/ntap-20230609-0003/mitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000