Lucene search
AlmaLinuxALSA-2023:4030HistoryJul 12, 2023 - 12:00 a.m.
Critical: grafana security update
2023-07-1200:00:00
errata.almalinux.org
15
0.001 Low
EPSS
Percentile
40.9%
Grafana is an open source, feature rich metrics dashboard and graph editor for Graphite, InfluxDB & OpenTSDB.
Security Fix(es):
- grafana: account takeover possible when using Azure AD OAuth (CVE-2023-3128)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| almalinux | 9 | ppc64le | grafana | <Â 9.0.9-3.el9_2.alma | grafana-9.0.9-3.el9_2.alma.ppc64le.rpm |
| almalinux | 9 | aarch64 | grafana | <Â 9.0.9-3.el9_2.alma | grafana-9.0.9-3.el9_2.alma.aarch64.rpm |
| almalinux | 9 | x86_64 | grafana | <Â 9.0.9-3.el9_2.alma | grafana-9.0.9-3.el9_2.alma.x86_64.rpm |
| almalinux | 9 | s390x | grafana | <Â 9.0.9-3.el9_2.alma | grafana-9.0.9-3.el9_2.alma.s390x.rpm |
Related
nessus
nessus
Oracle Linux 8 : grafana (ELSA-2023-6972)
2023-11-21 00:00:00
RHEL 9 : grafana (RHSA-2023:4030)
2023-07-12 00:00:00
Oracle Linux 9 : grafana (ELSA-2023-4030)
2023-07-20 00:00:00
almalinux
almalinux
Moderate: grafana security and enhancement update
2023-11-14 00:00:00
osv
osv
BIT-grafana-2023-3128
2024-03-06 10:53:06
Grafana vulnerable to Authentication Bypass by Spoofing
2023-06-22 21:30:49
CVE-2023-3128
2023-06-22 21:15:09
rocky
rocky
grafana security update
2023-07-19 17:53:40
cve
cve
CVE-2023-3128
2023-06-22 21:15:09
alpinelinux
alpinelinux
CVE-2023-3128
2023-06-22 21:15:00
oraclelinux
oraclelinux
grafana security update
2023-07-19 00:00:00
grafana security and enhancement update
2023-11-17 00:00:00
prion
prion
Authentication flaw
2023-06-22 21:15:00
openvas
openvas
redhatcve
redhatcve
CVE-2023-3128
2023-06-23 03:16:58
veracode
veracode
Authentication Bypass
2023-07-05 10:26:37
github
github
Grafana vulnerable to Authentication Bypass by Spoofing
2023-06-22 21:30:49
rosalinux
rosalinux
Advisory ROSA-SA-2023-2181
2023-07-04 13:37:03
redhat
redhat
(RHSA-2023:4030) Critical: grafana security update
2023-07-12 03:05:36
(RHSA-2023:6972) Moderate: grafana security and enhancement update
2023-11-14 08:41:59
freebsd
freebsd
Grafana -- Account takeover / authentication bypass
2023-06-22 00:00:00
cvelist
cvelist
CVE-2023-3128
2023-06-22 20:14:00
thn
thn
redos
redos
ROS-20240404-01
2024-04-04 00:00:00