CVE-2023-1387

Name of the Vulnerable Software and Affected Versions Grafana versions 9.1 and later

Description The issue is related to the ability to search for a JWT in the URL query parameter auth token and use it as the authentication token. By enabling the "url login" configuration option, a JWT might be sent to data sources. If an attacker has access to the data source, the leaked token could be used to authenticate to Grafana. This could allow a remote attacker to gain unauthorized access to protected information.

Recommendations For Grafana versions 9.1 and later, consider disabling the "url login" configuration option to prevent JWT tokens from being sent to data sources. As a temporary workaround, restrict access to data sources to minimize the risk of exploitation. Avoid using the auth token parameter in URL queries until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.