VYPR
Low severityNVD Advisory· Published Nov 11, 2025· Updated Apr 15, 2026

CVE-2025-41116

CVE-2025-41116

Description

When using the Grafana Databricks Datasource Plugin, if Oauth passthrough is enabled on the datasource, and multiple users are using the same datasource at the same time on a single Grafana instance, it  could result in

the wrong user identifier being used, and information for which the viewer is not authorized being returned.

This issue affects Grafana Databricks Datasource Plugin: from 1.6.0 before 1.12.0

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

1

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.