Grafana Enterprise SCIM Provisioning Privilege Escalation (CVE-2025-41115)

SCIM provisioning was introduced in Grafana Enterprise and Grafana Cloud in April to improve how organizations manage users and teams in Grafana by introducing automated user lifecycle management. In Grafana versions 12.x where SCIM provisioning is enabled and configured, a vulnerability in user...

Grafana Incorrect Privilege Assignment vulnerability

SCIM provisioning was introduced in Grafana Enterprise and Grafana Cloud in April to improve how organizations manage users and teams in Grafana by introducing automated user lifecycle management. In Grafana versions 12.x where SCIM provisioning is enabled and configured, a vulnerability in user...

authentik 安全漏洞

authentik is an open source identity provisioning application from authentik open source. A security vulnerability exists in authentik that stems from vulnerability to stored cross-site scripting attacks...