6 matches found
Open Redirect via Organization Switching
An open redirect vulnerability has been identified in Grafana OSS organization switching functionality. Prerequisites for exploitation Multiple organizations must exist in the Grafana instance - Victim must be on a different organization than the one specified in the URL id: CVE-2025-6197 info:...
SUSE-SU-2025:4482-1 Security update for grafana
This update for grafana fixes the following issues: grafana was updated from version 11.5.5 to 11.5.10: - Security issues fixed: CVE-2025-64751: Dropped experimental implementation of authorization Zanzana server/client version 11.5.10 bsc1254113 CVE-2025-47911: Fixed parsing HTML documents versi...
grafana-11.6.3+security01-1.1 on GA media (moderate)
grafana-11.6.3+security01-1.1 on GA media Announcement ID: openSUSE-SU-2025:15372-1 Rating: moderate Cross-References: CVE-2025-6023 CVE-2025-6197 CVSS scores: CVE-2025-6023 SUSE : 7.6 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:L/A:L CVE-2025-6023 SUSE : 7.2...
CVE-2025-6197
A flaw was found in Grafana, where the organization switching functionality caused an open redirect vulnerability. To make this exploitable, the Grafana instance must have more than one organization, and the user being redirected must be a member of both. Furthermore, the attacker needs to know t...
SUSE CVE-2025-6197
An open redirect vulnerability has been identified in Grafana OSS organization switching functionality. Prerequisites for exploitation: - Multiple organizations must exist in the Grafana instance - Victim must be on a different organization than the one specified in the URL...
CVE-2025-6197
creationtimestamp| type| source ---|---|--- 2025-07-18 13:19:19+00:00| seen| https://infosec.exchange/users/cR0w/statuses/114874434093981321 2025-07-18 21:03:26+00:00| seen| https://bsky.app/profile/nixpkgssecuritychanges.gerbet.me/post/3lubdujq4sw2c 2025-07-19 09:35:25+00:00| seen|...